Microsoft released several urgent security updates for Exchange Server based on cyber attacks believed to be from HAFNIUM and other groups starting March 2, 2021. This includes Microsoft Exchange Server 2019, 2016, 2013 and 2010, but not Exchange Online. Microsoft recommends installation of security updates and running tests to see if Exchange servers have already been compromised.
Category Archives: Security
SolarWinds security incident
SolarWinds issued a security advisory in December 2020 regarding recent cyberattacks on its Orion Platform of products and an FAQ page. Microsoft has also created a list of resources regarding this security incident.
No More Ransom website has decryption tools for some ransomware
The No More Ransom project website has free decryption tools for many known ransomware types.
If a decryption tool is not found, one option is to replace the hard drive and operating system and save the locked drive offline. A decryption tool may become available months later to free the data at that point.
Ring now requires two-factor authentication
Ring now requires that customers use two-factor authentication when when they log into their accounts. Instructions on how to set up Ring two-factor authentication may be found here.
The Ring app also has a new Control Center for customers to manage their privacy and security settings.
Avast will end operations for Jumpshot because of user privacy concerns
Avast announced that they have decided to end operations for its subsidiary data analytics company Jumpshot because of public concerns about user privacy. Avast’s free and paid antivirus software is used by millions of computer and mobile device users.
Microsoft reports access misconfiguration for customer support database
Microsoft reported a data security incident with some of its customer support data. The issue happened in December 2019 and Microsoft is in the process of contacting the affected users.
Convenience store chain Wawa reports data breach
Convenience store chain Wawa has disclosed a data breach that occurred from March 2019 to December 2019. Malware was detected and then removed from its payment processing servers by their information security team. Payment information, including credit and debit card numbers, expiration dates, and cardholder names were included in this breach. Wawa is offering one year of identity theft protection for affected cardholders.
Microsoft releases security updates for Remote Desktop Services
Microsoft has released updates to fix a security issue for Remote Desktop Services on Windows 10, 7, and 8.1, as well as Windows Server 2008 and 2012. Windows 10 Home and Windows 10 Pro computers will be updated automatically as part of the standard Windows Update process.
Microarchitectural Data Sampling (MDS) security vulnerability in CPUs
Intel released information regarding a new set of CPU vulnerabilities called Microarchitectural Data Sampling (MDS). A list of affected Intel products may be found here.
Updates are available from major technology companies for this issue, including:
AMD states that their CPUS are not affected by this vulnerability.
Docker security incident
Docker became aware that a single Docker Hub database was unsecured on April 25th 2019. The security issue was resolved and Docker is continuing to investigate this matter. An estimated 190,000 accounts may have been affected and those passwords were reset and user tokens and access keys were revoked.