End of Microsoft Windows 7 security updates from today

Starting today, January 10th, Windows 7 Enterprise and Professional operating systems will no longer receive security updates. Thus, computers that still run these OS will no longer be protected against critical vulnerabilities. Apart from the operating system itself, browsers (both Edge and third-party browsers), as well as services from other non-Microsoft vendors, such as NVIDIA, have confirmed that they have also stopped offering new security patches in Windows 7. Actions to be taken You should upgrade your Microsoft Windows to newer versions, if your hardware does not support Windows 11, you may upgrade to Windows 10 or maybe consider switching to another Operation System like Linux....

January 10, 2023 路 1 min 路 106 words

Gates spends entire first day back in office trying to install Windows 8.1

REDMOND, WASHINGTON (The Borowitz Report)鈥擝ill Gates鈥檚 first day at work in the newly created role of technology adviser got off to a rocky start yesterday as the Microsoft founder struggled for hours to install the Windows 8.1 upgrade. The installation hit a snag early on, sources said, when Mr. Gates repeatedly received an error message informing him that his PC ran into a problem that it could not handle and needed to restart....

February 7, 2014 路 1 min 路 175 words

Microsoft warns of Facebook-hijacking extensions

Malicious browser extensions are trying to hijack Facebook profiles, according to a聽warning聽from Microsoft鈥檚 Malware Protection Center. The extensions, first discovered in Brazil and dubbed聽JS/Febipos.A聽by Microsoft, are targeted at Chrome and Mozilla Firefox and appear to be installed by a custom聽trojan dropper. Microsoft first reported on the trojans in April, but it seems that a recent update to the trojans warrants bringing further attention to them....

May 13, 2013 路 2 min 路 214 words

Internet Explorer 8 0-Day Update CVE-2013-1347

Microsoft has confirmed a bug in Internet Explorer 8, CVE-2013-1347, which exposes user machines to remote code execution. In an advisory, Microsoft says the vulnerability 鈥渆xists in the way that Internet Explorer [accesses] an object in memory that has been deleted or has not been properly allocated.鈥 That, in turn, opens the door to memory corruption and remote code execution in the current user context. According to this blog post by Eric Roman: 鈥淎 use-after-free condition occurs when a CGenericElement object is freed, but a reference is kept on the document and used again during rendering, an invalid memory that鈥檚 controllable is used, and allows arbitrary code execution under the context of the user....

May 6, 2013 路 2 min 路 225 words

Microsoft patches the security update 2823324

Microsoft is making another attempt to close the privilege elevation hole in the NTFS filesystem鈥檚 kernel driver for Windows聽7 and Server 2008, including R2. The new patch, 2840149, supersedes security update 2823324, which Microsoft released on its April Patch Tuesday. However, shortly after releasing it, the software giant had to recall the first update because it caused problems with various third-party programs; it crippled computers and triggered error messages....

April 24, 2013 路 1 min 路 146 words

Microsoft to plug holes in Windows Defender in Patch Tuesday

Microsoft鈥檚 Patch Tuesday on 9 April will be an important spring cleaning day; the company plans to implement nine security bulletins. One of the bulletins deals with vulnerabilities in Windows Defender for Windows 8 and RT; the hole is rated as important and can be exploited to achieve elevated privileges. The headline bulletins will be the two critical security holes, one of which affects all versions of Windows and Windows Server, and another critical vulnerability which can be found in all versions of Internet Explorer....

April 5, 2013 路 1 min 路 190 words

Internet Explorer 10 for Windows 7 [Download Links]

Internet Explorer 10 is available worldwide in 95 languages for download today. Read more in IE Blog: http://blogs.msdn.com/b/ie/archive/2013/02/26/ie10-for-windows-7-globally-available-for-consumers-and-businesses.aspx Download Links: x86: http://www.microsoft.com/en-us/download/details.aspx?id=36808 x64: http://www.microsoft.com/en-us/download/details.aspx?id=36806 Other (Non-English) Languages: http://windows.microsoft.com/en-us/internet-explorer/downloads/ie-10/worldwide-languages

February 26, 2013 路 1 min 路 28 words

Dorkbot worm lurks on Skype and MSN Messenger again

The Dorkbot/Rodpicom worm, which spreads via messaging applications and leads to additional malware infections, is currently doing rounds on Skype and MSN Messenger, warns Fortinet. The vicious circle starts with potential victims receiving a direct message from a contact, asking 鈥淟OL is this your new profile pic? http://goo.gl/[removed]鈥. Those who follow the link land on a malicious site and are infected with the worm. Apart from being able to send out the aforementioned message to further potential victims, the malware is also capable of opening a backdoor into the infected system, downloading more malicious software, spamming, reaching out to its C&C server, downloading a new version of itself, and other malicious activities....

February 11, 2013 路 2 min 路 222 words

Internet Explorer security hole: Use other browser

TheTelegraph: Internet Explorer users might want to consider upgrading or switching to another browser after a massive security hole was discovered in Windows鈥 native web browser. According to security forum, Rapid7 , Internet Explorer 7, 8 and 9 operating on Windows XP, Vista and Seven contains what is known as a 鈥渮ero day exploit鈥 which allows attackers to gain access to your personal data while you browse. The forum claimed the exploit would give cyber criminals 鈥渢he same privileges as the current user鈥....

September 18, 2012 路 1 min 路 174 words

Microsoft's September Patch Tuesday closes important XSS holes

h-online: On its September Patch Tuesday, Microsoft released two security updates that are rated as important and which close holes in Visual Studio Team Foundation Server 2010 (TFS) and Systems Management Server 2003 and 2007. Both updates fix cross-site scripting (XSS) vulnerabilities in the web interfaces that allow attackers to execute arbitrary code in the victim鈥檚 browser. As the holes enable an attacker to access the web interfaces at the user鈥檚 privilege level, Microsoft has classified them as privilege escalation vulnerabilities....

September 12, 2012 路 2 min 路 239 words