Credential Stuffing Surge Targets Businesses and Individuals.
The recent surge in credential stuffing attacks highlighted by Okta serves as a stark reminder of the importance of robust cyber security practices. These attacks…
Microsoft’s April Patch Tuesday Addresses Critical Zero-Day Attacks
Microsoft’s recent Patch Tuesday update in April 2024 has addressed 150 vulnerabilities. Importantly, this included patches for two “zero-day” vulnerabilities that had been actively exploited by cybercriminals.
What are Zero-Day Vulnerabilities?
Zero-day vulnerabilities are security flaws in software that are unknown to the software vendor. Attackers exploit these weaknesses before a fix is available, making them highly dangerous.
The Exploited Vulnerabilities
- CVE-2024-26234: A proxy driver spoofing vulnerability that allowed attackers to distribute malware through a compromised driver that appeared to carry a valid Microsoft signature.
- CVE-2024-29988: A SmartScreen bypass vulnerability, designed to evade Microsoft Defender’s “Mark of the Web” (MotW) security warnings when opening malicious files.
These attacks were employed in targeted campaigns to install malware, such as remote access trojans (RATs) on victim’s systems.
How to Protect Yourself
The importance of applying security updates promptly cannot be overstated:
- Update Immediately: Ensure your Windows systems are set to download and install updates automatically. Don’t postpone critical security patches.
- Good Cyber Security Habits: Remain cautious about email attachments, even from familiar senders. Never click on links within emails or attachments unless you completely trust the source.
- Antivirus and Security Software: Install reliable antivirus and internet security software and keep it updated.
Additional Tips for Organisations
- Staff Training: Educate your employees about the risks of phishing attacks and how to spot suspicious emails.
- Network Segmentation: Segment your network to limit the potential spread of malware if an attack succeeds.
- Endpoint Detection and Response (EDR): Invest in EDR solutions to enhance threat detection and incident response.
Security updates play a crucial role in protecting against cyber threats. By applying patches regularly and practicing good cyber security hygiene, you can greatly reduce your risk.
Related articles
Cisco Firewall Vulnerabilities: Urgent Action Needed to Protect Against State-Sponsored Espionage
Businesses and organisations relying on Cisco’s Adaptive Security Appliance (ASA) and Firepower Threat Defence (FTD) firewalls are being advised to take immediate action to protect…
Cybercriminals Threaten Release of Sensitive World-Check Database
A recent cyber attack has resulted in a serious data breach affecting the World-Check database, a critical tool used by financial institutions and other organisations…