Microsoft Security Update Minor Revisions Issued: October 20, 2017

Security Updates / Bulletins / Advisories No Comments »
Summary

The following advisory and security bulletin have undergone a
minor revision increment.

* ADV170012
* MS14-085

Revision Information:

ADV170012

– Title: ADV170012 | Vulnerability in TPM could allow Security
Feature Bypass
– »portal.msrc.microsoft.co ··· guidance
– Reasons for Revision: Removed the October security-only updates
for Windows Server 2012, Windows Server 2012 R2, and Windows 8.1
from the Affected Products table because these updates do not
address the vulnerability discussed in this advisory. Clarified
in FAQ 9 and 10 that customers running these versions of Windows
who install security-only updates must install either the
September security-only updates or the October monthly rollup
to receive the changes for this vulnerability. These are
informational changes only.
– Originally posted: October 10, 2017
– Updated: October 20, 2017
– CVE Severity Rating: Critical
– Version: 1.5

MS14-085

– Title: Vulnerability in Microsoft Graphics Component Could
Allow Information Disclosure (3013126)
– »technet.microsoft.com/li ··· ms14-085
– Reasons for Revision: Corrected a typo in the CVE description.
– Originally posted: December 9, 2017
– Updated: October 19, 2014
– CVE Severity Rating: Important
– Version: 1.1

Removal instructions for SearchApp

PUP Browser Hijacker No Comments »

What is SearchApp?

The Malwarebytes research team has determined that SearchApp is a browser hijacker. These so-called “hijackers” manipulate your browser(s), for example to change your startpage or searchscopes, so that the affected browser visits their site or one of their choice.

https://forums.malwarebytes.com/topic/213045-removal-instructions-for-searchapp/

Microsoft Security Update Minor Revisions Issued: October 18, 2017

Security Updates / Bulletins / Advisories No Comments »
Summary

The following advisory and CVE have been revised in the October 2017
Security Updates.

* ADV170012
* CVE-2017-13080

Revision Information:

ADV170012

– Title: ADV170012 | Vulnerability in TPM could allow Security
Feature Bypass
– »portal.msrc.microsoft.co ··· guidance
– Reasons for Revision: The following revisions added under Step 4:
Apply applicable firmware updates are informational only: * Added list
of affected Microsoft Surface devices. * Added link for Acer to the
table of OEM information.
– Originally posted: October 10, 2017
– Updated: October 18, 2017
– CVE Severity Rating: Critical
– Version: 1.4

CVE-2017-13080

– Title: CVE-2017-13080 | Windows Wireless WPA Group Key Reinstallation
Vulnerability
– »portal.msrc.microsoft.co ··· guidance
– Reasons for Revision: Corrected FAQ 4 to clarify that the security
updates released on October 10 fully address CVE-2017-13080.
– Originally posted: October 10, 2017
– Updated: October 18, 2017
– CVE Severity Rating: Important
– Version: 1.2

Removal instructions for Soft cores

Miner No Comments »

What is Soft cores?

The Malwarebytes research team has determined that Soft cores is a Bitcoin miner. These miners are designed to earn cryptocurrency by using system resources.

https://forums.malwarebytes.com/topic/212987-removal-instructions-for-soft-cores/

Google Releases Security Updates for Chrome

News, Security Updates / Bulletins / Advisories No Comments »

Google has released Chrome version 62.0.3202.62 for Windows, Mac, and Linux to address multiple vulnerabilities. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.

US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary updates.

https://www.us-cert.gov/ncas/current-activity/2017/10/18/Google-Releases-Security-Updates-Chrome

Spybot Search & Destroy Weekly Update -October 18, 2017

Updates No Comments »

2017-10-18
Adware
+ Ad.Amonetize ++ Ad.GreatSaver + AirAdInstaller + bProtector + Firseria + Win32.InCore
Malware
+ Win32.LoadMoney
PUPS
+ GameVance.PlaySushi ++ PU.FIXIO.PCCleaner ++ PU.Mindspark.AnytimeAstrology ++ PU.SmartPCFixer ++ PU.SystemOptimizerPro ++ PU.Xportsoft.QuickPCBooster
Trojans
++ CredStealer.fb + RAT.NetWire ++ Win32.Johnny
Total: 2634460 fingerprints in 845493 rules for 8030 products.

»www.safer-networking.org ··· updates/

Removal instructions for InboxAce

PUP Browser New Tab No Comments »

What is InboxAce?

The Malwarebytes research team has determined that InboxAce is a browser NewTab. These so-called “NewTabs” can manipulate your browser(s), for example to change your startpage or searchscopes, so that the affected browser visits their site or one of their choice.

https://forums.malwarebytes.com/topic/212908-removal-instructions-for-inboxace/

Microsoft Security Update Minor Revisions Issued: October 17, 2017

Security Updates / Bulletins / Advisories No Comments »
Summary

The following advisory has been revised in the October 2017 Security
Updates.

* ADV170012

Revision Information:

ADV170012

– Title: ADV170012 | Vulnerability in TPM could allow Security
Feature Bypass
– »portal.msrc.microsoft.co ··· guidance
– Reasons for Revision: v1.3: The following revisions are
informational changes only: * Added CVE number and vulnerability
name. * Added links for OEM information for HPE and Toshiba to the
table under Step 4: Apply applicable firmware updates. * Added
information for MSA to the table under Step 5: Remediate services
based on your particular use cases.
– Originally posted: October 10, 2017
– Updated: October 17, 2017
– CVE Severity Rating: Critical
– Version: 1.3

Microsoft Security Update Releases Issued: October 17, 2017

Security Updates / Bulletins / Advisories No Comments »

Summary

The following CVE has undergone a major revision increment.

* ADV170018

CVE Revision Information:

CVE-2017-13080

– Title: ADV170018 | October 2017 Flash Update
– »portal.msrc.microsoft.co ··· guidance
– Reason for Revision: The October Adobe Flash Security Update is
available for installation. See »support.microsoft.com/
en-us/help/4049179 for more information.
– Originally posted: October 17, 2017
– Updated: N/A
– CVE Severity Rating: Critical
– Version: 1.0

Removal instructions for Easy PC Optimizer

Fake System Optimizer No Comments »

What is Easy PC Optimizer?

The Malwarebytes research team has determined that Easy PC Optimizer is a “system optimizer”. These so-called “system optimizers” use intentional false positives to convince users that their systems have problems. Then they try to sell you their software, claiming it will remove these problems.

https://forums.malwarebytes.com/topic/212852-removal-instructions-for-easy-pc-optimizer/


© 2017 DP's Bits & Bytes.
WordPress Theme & Icons by N.Design Studio. Provided by WPMU DEV -The WordPress Experts   Hosted by Microsoft MVPs
Entries RSS Comments RSS Log in