Zero-Day Vulnerability (CVE-2024-49138) Exploit Observed in the Wild CVE-2024-49138 is a privilege escalation vulnerability within the Microsoft Windows Common Log File System (CLFS) driver, categorized as Important in severity. CrowdStrike Counter Adversary Operations discovered and privately reported this vulnerability to Microsoft, which subsequently acknowledged, … [Read more...] about December 2024 Patch Tuesday: Updates and Analysis
december
December 2021 Patch Tuesday: Updates and Analysis
It’s the last Patch Tuesday update of 2021, and as with many other updates this year, this month’s list includes important ones — among them a zero-day (CVE-2021-43890 in AppX installer), multiple critical vulnerabilities and a variety of attack types utilized in several Microsoft product families — highlighting once again that patching and prioritization are prominent programs … [Read more...] about December 2021 Patch Tuesday: Updates and Analysis
Threat Roundup for December 11 to December 18
Today, Talos is publishing a glimpse into the most prevalent threats we’ve observed between December 11 and December 18. As with previous roundups, this post isn’t meant to be an in-depth analysis. Instead, this post will summarize the threats we’ve observed by highlighting key behavioral characteristics, indicators of compromise, and discussing how our customers are … [Read more...] about Threat Roundup for December 11 to December 18
Threat Roundup for December 4 to December 11
Today, Talos is publishing a glimpse into the most prevalent threats we’ve observed between December 4 and December 11. As with previous roundups, this post isn’t meant to be an in-depth analysis. Instead, this post will summarize the threats we’ve observed by highlighting key behavioral characteristics, indicators of compromise, and discussing how our customers are … [Read more...] about Threat Roundup for December 4 to December 11
Threat Roundup for November 27 to December 4
Today, Talos is publishing a glimpse into the most prevalent threats we’ve observed between November 27 and December 4. As with previous roundups, this post isn’t meant to be an in-depth analysis. Instead, this post will summarize the threats we’ve observed by highlighting key behavioral characteristics, indicators of compromise, and discussing how our customers are … [Read more...] about Threat Roundup for November 27 to December 4
Three to Launch UK 4G Service in December
Following the launches of O2, Vodafone, and EE's 4G LTE networks in the UK, mobile service provider Three has announced that it is launching its 4G network within the region by December. Existing customers on Three's network will get 4G service at no extra charge upon launch, with plans for new customers being priced competitively against other carriers. … [Read more...] about Three to Launch UK 4G Service in December