Microsoft's PrintNightmare Patch Fails to Fully Fix the Problem
Kaseya knew about the flaw exploited by REvil attackers in April, Biden says he will deliver a ransomware response to Putin, Threat actors are using Kaseya ransomware attack for malspam, much more
Check out my latest column in CSO, which addresses how President Biden might get Russian President Putin to the table to solve the ransomware problem.
Researchers say that an emergency patch Microsoft issued on Tuesday fails to fully fix the critical security vulnerability known as PrintNightmare in all supported versions of Windows.
Microsoft published an out-of-band fix on Tuesday, saying the update “fully addresses the public vulnerability.” But researchers Benjamin Delpy published a video showing how exploits could bypass the patch and demonstrated the update fails to fix vulnerable systems that use certain settings for a feature called point and print, making it easier for network users to obtain the printer drivers they need. Despite the incomplete nature of the patch, it still provides meaningful protection against many types of attacks that exploit the PrintNightmare vulnerability. (Dan Goodin / Ars Technica)
Related: Spyware news, Qualys Blog, Security News | Tech Times, Hei…
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.