-
Exchange 2010 / Exchange 2013 / Exchange 2016 / Exchange 2019 / Security February 13, 2020
READ MORECVE-2020-0688 | Microsoft Exchange Validation Key Remote Code Execution Vulnerability Security Vulnerability Date of Publishing: February/11/2020 Microsoft has announced a vulnerability has been found in all Exchange Server 2010 through 2019 versions, The vulnerability allows an attack to send a specially crafted request to the affected server in order to exploit it. When could this […]
-
READ MORE
Windows 10 Update : Yesterday and today Microsoft released KB4532695 and KB4528760 causes TPM 2.0 driver to stop functioning and causes BSOD with error “Memory Management” Issue. Windows Hello Face Authentication In the first KB Microsoft says they have improved the accuracy of Windows Hello Face authentication however this would cause your PIN to be […]
-
READ MORE
The “Windows List” website, which follows the news of the famous operating system “Windows 10“, issued a warning to the users of the Operating system after it monitored a new security update for the operating system, which is “KB4528760” causing serious problems, noting that the problem “appears to be widespread now.” In its interpretation of […]
-
READ MORE
Windows 10 Crypto API Spoofing Microsoft has released a new security patch for a vulnerability that could affect millions of Windows 10 Users world wide. The decades old CryptoAPI tool validates and signs packages/software which could be utilized by hackers/developers to sign and execute illegitimate software thus would allow users to run anything without user’s […]
-
READ MORE
The story: I have got a request from a client asking to find out which server(s) is using which domain admin or a highly privileged account as a service. To find this I already wrote a powershell script that does this, Search the non standard/(Domain only users) and show the services and name of the […]
-
READ MORE
Turla APT found exploiting LightNeuron backdoor, a first of its kind targeting Microsoft Exchange email servers. A Russian cyber-espionage group has developed and has been using one of the most complex backdoors ever spotted on an email server, according to new research published today by cyber-security firm ESET. The backdoor, named LightNeuron, was specifically designed […]
-
READ MORE
You might have heard that very recently Google has launched their DNS over TLS which is based on their Google Public DNS service the most commonly used DNS recursive resolver worldwide. In a statement Google published the following article https://security.googleblog.com/2019/01/google-public-dns-now-supports-dns-over.html Google Public DNS is the world’s largest public Domain Name Service (DNS) recursive resolver, […]
-
MasterCard / Microsoft / Privacy / Security January 10, 2019
READ MOREMONITORING SOCIETY. Mobile Bank ID and Swish were just the beginning. Now, Mastercard and Microsoft are to produce digital identities for everyone. Your identity should be known no matter what you do. The system will also simplify for increased invasion of racial strangers to the West. Last Month, Mastercard and Microsoft announced in a joint […]
-
Exchange 2013 / Exchange 2016 / Exchange 2019 / Microsoft / Security January 9, 2019
READ MORECVE-2019-0586 | Microsoft Exchange Memory Corruption Vulnerability Yesterday Microsoft has published an KB article about a security threat to Exchange 2013-2016 and 2019. The article mentions CU10-CU11 for Exchange 2016, CU21 for Exchange 2013 and RTM version of Exchange 2019 as well. I spoke to Microsoft of whether this issue affects earlier CU versions for […]
-
READ MORE
Suppression allows an administrator to control how many alerts are generated from (or to) a given host or for a particular signature. What does it do exactly? Suppression prevents rules from firing on a specific network segment without removing the rules from the ruleset. By using suppression, ruleset can be quickly turned for a specific […]