📢 For this month patch Tuesday we got Microsoft Signed Drivers Being Used maliciously, a print spooler privilege escalation, AD privileged escalation and a SPNEGO RCE and more.
The first one should really trigger your update schedule and don't forget to hunt for the #IoC published by Mandant, Sophos and others in the #security community.
#patchtuesday #microsoft #AD #printspooler
▫️https://msrc.microsoft.com/update-guide/vulnerability/ADV220005
▫️https://www.mandiant.com/resources/blog/hunting-attestation-signed-malware
▫️https://news.sophos.com/en-us/2022/12/13/signed-driver-malware-moves-up-the-software-trust-chain/
▫️https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44681
▫️https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38042
▫️https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37958
#ioc #security #patchtuesday #microsoft #ad #printspooler
Microsoft Patch Tuesday, February 2022 Edition - Microsoft today released software updates to plug security holes in its Windows o... https://krebsonsecurity.com/2022/02/microsoft-patch-tuesday-february-2022-edition/ #andrewcunningham #cve-2022-21989 #cve-2022-21996 #cve-2022-22005 #recordedfuture #immersivelabs #printspooler #timetopatch #arstechnica #gregwiseman #allanliska #kevinbreen #rapid7 #win32k
#win32k #rapid7 #kevinbreen #allanliska #gregwiseman #arstechnica #timetopatch #printspooler #immersivelabs #recordedfuture #cve #andrewcunningham
Microsoft Patch Tuesday, February 2022 Edition https://krebsonsecurity.com/2022/02/microsoft-patch-tuesday-february-2022-edition/ #AndrewCunningham #CVE-2022-21989 #CVE-2022-21996 #CVE-2022-22005 #RecordedFuture #ImmersiveLabs #PrintSpooler #TimetoPatch #ArsTechnica #GregWiseman #AllanLiska #KevinBreen #Rapid7 #Win32k
#AndrewCunningham #CVE #RecordedFuture #ImmersiveLabs #printspooler #TimetoPatch #arstechnica #GregWiseman #AllanLiska #KevinBreen #rapid7 #Win32k
More PrintNightmare: “We TOLD you not to turn the Print Spooler back on!” - The PrintNightmare continues. So does our advice, even though it stops your printer worki... https://nakedsecurity.sophos.com/2021/07/16/more-printnightmare-we-told-you-not-to-turn-the-print-spooler-back-on/ #cve-2021-34481 #printnightmare #vulnerability #printspooler #microsoft
#microsoft #printspooler #vulnerability #printnightmare #cve
Hmmm. I wonder how this affects #Samba or #CUPS. #PrintDemon #exploit #security #windows #printspooler
https://www.zdnet.com/article/printdemon-vulnerability-impacts-all-windows-versions/
#samba #cups #PrintDemon #exploit #security #windows #printspooler