Windows Remote Desktop servers now used to amplify DDoS attacks

Posted by & filed under Ειδοποιήσεις.

Windows Remote Desktop Protocol (RDP) servers are now being abused by DDoS-for-hire services to amplify Distributed Denial of Service (DDoS) attacks. The Microsoft RDP service is a built-in Windows service running on TCP/3389 and/or UDP/3389 that enables authenticated remote virtual desktop infrastructure (VDI) access to Windows servers and workstations. Attacks taking advantage of this new… Read more »

Microsoft issues out of band KB4578013 Windows Security Update

Posted by & filed under Ειδοποιήσεις.

Microsoft has issued an emergency out of band Windows security update designed to address privilege escalation bugs found to impact the Windows Remote Access service. “An out of band security update has been released for Windows 8.1 and Windows Server 2012 R2,” Microsoft says. “We recommend that you install these updates promptly.” The KB4578013 security update fixes… Read more »

Windows Control Flow Guard support added to Rust, Clang compilers

Posted by & filed under Security News.

Microsoft today said that it worked with the LLVM and Rust development teams to add support for the Windows Control Flow Guard (CFG) platform security feature into the Clang and rustc compilers. CFG is designed to block malicious code from changing the default control flaw of Windows programs, it extends other exploitation mitigation tech like /GS (Buffer… Read more »

Cisco fixes severe flaws in Webex Meetings for Windows, macOS

Posted by & filed under Ειδοποιήσεις.

Cisco today released security updates to address two high severity vulnerabilities found in the Cisco Webex Meetings Desktop App for Windows and macOS that could allow unprivileged attackers to run programs and code on vulnerable machines. Cisco Webex Meetings is an online meeting and video conferencing software that makes it easy to schedule and join meetings. The platform… Read more »