Microsoft Windows
Critical Windows 10 security fix pushed out after NSA warns Microsoft of spying vulnerability
Jan 15, 2020Hundreds of millions of Windows 10 users are having an important patch rolled out to their computers today after Microsoft was warned by the NSA of a serious security hole in the operating system.
After months of worry, BlueKeep vulnerability is now being exploited in mass-hacking campaign
Nov 4, 2019The BlueKeep vulnerability, discovered by the UK’s NCSC, is being exploited at scale in an attempt to install a cryptocurrency miner on unpatched Windows PCs.
Microsoft warns of wormable vulnerabilities in Windows
Aug 14, 2019Microsoft’s security team warns that the remote code execution vulnerabilities could be abused by malware to spread from computer to computer without requiring any user interaction. Patch your systems now! Read more in my article on the Hot for Security blog.
BlueKeep – everyone agrees, you should patch PCs running legacy versions of Windows
Jun 10, 2019I have this horrible feeling that the only way we’re going to wake the world up to the need to patch their ageing versions of Windows against the BlueKeep vulnerability is to wait until a malicious worm begins to spread around the world. Prove me wrong. Patch now.
Smashing Security podcast #131: Zap yourself from the net, and patch now against BlueKeep
Jun 6, 2019Microsoft issues warning to unpatched Windows users about worm risk, and how do you delete all traces of yourself off the internet after you murder your podcast co-host? All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault.
Zero-day flaw exploited in targeted attacks is fixed by Microsoft
May 10, 2018This month’s Patch Tuesday bundle of updates from Microsoft included a fix for a critical vulnerability that has been actively exploited by at least one hacking gang in targeted attacks. Read more in my article on the Tripwire State of Security blog.
Good news and bad news on the Microsoft patch front
Feb 22, 2017Microsoft belatedly patches some vulnerabilities in Adobe Flash Player, but some zero-days in other software remain untouched for now.
NSA spying on Microsoft Windows crash error reports
Jan 1, 2014You may think that it’s harmless enough to click on the “Send Error Report” button and send details of the crash to Microsoft, but recent revelations about NSA surveillance underline that there are risks. And they are no laughing matter.
Windows XP users warned of new, in-the-wild, zero-day attack
Nov 29, 2013If you’re one of the many people still running Windows XP on your computer, be on your guard.
Your Password Must Be at Least 18770 Characters and Cannot Repeat Any of Your Previous 30689 Passwords
Nov 14, 2013Some great advice from Microsoft on passwords. Errmmm.. perhaps not.