Remove 2021 Remove Backups Remove Internet
article thumbnail

MyBook Users Urged to Unplug Devices from Internet

Krebs on Security

Hard drive giant Western Digital is urging users of its MyBook Live brand of network storage drives to disconnect them from the Internet, warning that malicious hackers are remotely wiping the drives using a critical flaw that can be triggered by anyone who knows the Internet address of an affected device.

Internet 339
article thumbnail

Microsoft Patch Tuesday, August 2021 Edition

Krebs on Security

Microsoft said attackers have seized upon CVE-2021-36948 , which is a weakness in the Windows Update Medic service. Redmond says while CVE-2021-36948 is being actively exploited, it is not aware of exploit code publicly available. 10, 2021 for all versions of Windows, and is documented as CVE-2021-34481.

Software 335
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Microsoft Patch Tuesday, July 2021 Edition

Krebs on Security

.” Among the critical bugs is of course the official fix for the PrintNightmare print spooler flaw in most versions of Windows ( CVE-2021-34527 ) that prompted Microsoft to rush out a patch for a week ago in response to exploit code for the flaw that got accidentally published online. out of a possible 10.

DNS 314
article thumbnail

Microsoft Patch Tuesday, March 2021 Edition

Krebs on Security

Top of the heap this month (apart from the ongoing, global Exchange Server mass-compromise ) is a patch for an Internet Explorer bug that is seeing active exploitation. “We strongly encourage all organizations that rely on Internet Explorer and Microsoft Edge (EdgeHTML-Based) to apply these patches as soon as possible.”

DNS 347
article thumbnail

Microsoft Patch Tuesday, May 2021 Edition

Krebs on Security

On deck this month are patches to quash a wormable flaw, a creepy wireless bug, and yet another reason to call for the death of Microsoft’s Internet Explorer (IE) web browser. 5, 2021 to Microsoft was in Exchange Server. So do yourself a favor and backup before installing any patches.

Wireless 316
article thumbnail

Microsoft Patch Tuesday, December 2021 Edition

Krebs on Security

.” Part of the difficulty in patching against the Log4Shell attack is identifying all of the vulnerable web applications, said Johannes Ullrich , an incident handler and blogger for the SANS Internet Storm Center. Microsoft also patched CVE-2021-43883 , an elevation of privilege vulnerability in Windows Installer.

Internet 314
article thumbnail

Patch Tuesday, October 2021 Edition

Krebs on Security

to fix a zero-day vulnerability (CVE-2021-30883) that is being leveraged in active attacks targeting iPhone and iPad users. CVE-2021-38672 affects Windows 11 and Windows Server 2022; CVE-2021-40461 impacts both Windows 11 and Windows 10 systems, as well as Server versions. Firstly, Apple has released iOS 15.0.2