Microsoft Problems and Windows TCO
-
Bleeping Computer ☛ Microsoft: Outlook clients not syncing over Exchange ActiveSync
Microsoft warned Outlook for Microsoft 365 users that clients might have issues connecting to email servers via Exchange ActiveSync after a January update. Exchange ActiveSync (EAS) is an Exchange synchronization protocol using HTTP and XML to let users access their email, calendar, contacts, and tasks.
-
[Repeat] The Register UK ☛ Microsoft may have pulled support for old PCs in Win11 24H2
Its use here means that if your CPU is 15 years old – or older – there is every chance that the next major release of Windows 11, expected to be 24H2, won't boot. However, to put this in context, the instruction arrived in the first generation of Core i5 and i7 processors, which used the Nehalem microarchitecture.
-
Peteris Krumins ☛ Which Files Can Have Viruses? (And How to Avoid Them)
Yes, documents can contain viruses, which are often embedded within macros or malicious scripts that execute upon opening. Formats such as Microsoft Office files (.docx, .xlsx) and PDFs are particularly susceptible, as attackers can exploit their capabilities to run code.
-
Windows TCO
-
Security Week ☛ Microsoft Confirms Windows Exploits Bypassing Security Features
One of the exploited bugs — CVE-2021-43890 — dates back to 2021 and Redmond’s security team said it was aware of attacks that attempt to exploit this vulnerability by using specially crafted packages that include the malware family known as Emotet/Trickbot/Bazaloader.
-
Scoop News Group ☛ DOD notifying people who may be impacted by a year-old data breach
“This letter is to notify you of a data breach incident that may have resulted in a breach of your personally identifiable information (PII). During the period of February 3, 2023 through February 20, 2023, numerous email messages were inadvertently exposed to the Internet by a [DOD] service provider. Unfortunately, some of these email messages contained PII associated with individuals employed by or supporting the DOD, or individuals seeking employment with the DOD. While there is no evidence to suggest that your PII was misused, the department is notifying those individuals whose PII may have been breached as a result of this unfortunate situation,” the document states.
-
The Hill ☛ Russia may double forces on NATO borders, Estonia warns
Russian forces are likely planning to double their forces on borders with members of the Western security alliance NATO, the Estonian Foreign Intelligence Service said in a new report.
The report says that Russia is planning to create a new corps, which can include up to 45,000 troops, at NATO’s borders in northern Europe. As of 2022, Russia had about 19,000 troops at the northern border.
-
Cyble Inc ☛ Colorado State Public Defender Data Breach Halts Legal Aid
The Office of the Colorado State Public Defender, entrusted with providing legal aid to those unable to afford representation, finds itself ensnared in the aftermath of a cyberattack.
As a consequence of the Colorado State Public Defender data breach, access to critical resources such as calendars, emails, court filing systems, and even police reports has been severed, casting a shadow over the institution’s ability to fulfill its essential duties.
-
US Dept Of Health and Human Services ☛ HC3: Analyst Note, February 7, 2024 TLP:CLEAR Report: 202402071200, Akira Ransomware [PDF]
The below diagram is a step-by-step illustration of an Akira attack, leveraging several of the tactics and techniques described immediately above. In the below example, the Akira gang exploits a vulnerability in virtual private network software to gain initial access to their target. They then create an account (ostensibly via the VPN application) in order to establish persistent access to the network. After using appropriate tools to attempt to obscure their activities from detection, they immediately begin conducting network reconaissance (discovery) to understand their operational environment. They leverage tools to acquire existing credentials, move around the infrastructure and establish communications (command and control) back to their infrastructure. They finally steal data and deploy ransomware.
-
Krebs On Security ☛ Fat Patch Tuesday, February 2024 Edition
Microsoft Corp. today pushed software updates to plug more than 70 security holes in its Windows operating systems and related products, including two zero-day vulnerabilities that are already being exploited in active attacks.
-