Microsoft warns Windows users of two security holes already under attack
#1
Today, Microsoft warned billions of Windows users that hackers are actively exploiting two critical zero-day vulnerabilities that could allow bad actors to take complete control of targeted computers. According to a security advisory, the vulnerabilities are being used in "limited targeted attacks," and all supported Windows operating systems could be at risk.

The flaws exist in the Windows Adobe Type Manager Library, which allows apps to manage and render fonts available from Adobe Systems. Attackers may exploit the vulnerabilities by getting their targets to open booby-trapped documents or view them in the Windows preview pane.

Microsoft is still working to fix the vulnerabilities. The earliest it will issue a patch is likely April 14th. Microsoft typically releases security updates on Update Tuesday, the second Tuesday of each month. In the meantime, there are a few workarounds, including disabling the preview pane and details pane in Windows Explorer. Microsoft has detailed the steps users should take here:

https://portal.msrc.microsoft.com/en-US/.../ADV200006



https://www.engadget.com/2020-03-23-micr...nager.html
Reply
#2
Another attwmpt to kill off 7.

Just kill off Win Remote Desktop services.
Reply
#3
(Mar 25, 2020, 14:33 pm)waregim Wrote: Another attwmpt to kill off 7.

Just kill off Win Remote Desktop services.

If you read the OP, this had nothing to do with remote desktop services
Reply
#4
service that must be stopped is "WebClient"

also, Disable the Preview Pane and Details Pane in Windows Explorer

and older versions than Windows 10 1709 (including Windows 8.1, 8 and 7) must be Rename ATMFD.DLL by run cmd

For 32-bit systems:
Code:
cd "%windir%\system32"
takeown.exe /f atmfd.dll
icacls.exe atmfd.dll /save atmfd.dll.acl
icacls.exe atmfd.dll /grant Administrators:(F)
rename atmfd.dll x-atmfd.dll

For 64-bit systems:
Code:
cd "%windir%\system32"
takeown.exe /f atmfd.dll
icacls.exe atmfd.dll /save atmfd.dll.acl
icacls.exe atmfd.dll /grant Administrators:(F)
rename atmfd.dll x-atmfd.dll
cd "%windir%\syswow64"
takeown.exe /f atmfd.dll
icacls.exe atmfd.dll /save atmfd.dll.acl
icacls.exe atmfd.dll /grant Administrators:(F)
rename atmfd.dll x-atmfd.dll
Reply
#5
(Mar 28, 2020, 03:55 am)Q91 Wrote:
(Mar 25, 2020, 14:33 pm)waregim Wrote: Another attwmpt to kill off 7.

Just kill off Win Remote Desktop services.

If you read the OP, this had nothing to do with remote desktop services

Point is, disabling RDP will often handicap boogers.
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  European states routinely using spyware, EU Parliament report warns Resurgence 0 9,234 Nov 10, 2022, 13:50 pm
Last Post: Resurgence
  Online trackers can detect 80% of users' browsing history Resurgence 1 12,439 Feb 07, 2022, 22:19 pm
Last Post: balder
  US: Social Security Numbers most targeted sensitive data Resurgence 0 9,926 Feb 01, 2022, 20:39 pm
Last Post: Resurgence
  US: Los Angeles police officers collect social media data and social security numbers Resurgence 0 14,328 Sep 10, 2021, 01:57 am
Last Post: Resurgence
  Microsoft Azure cloud vulnerability exposed thousands of databases Resurgence 0 12,543 Aug 30, 2021, 22:58 pm
Last Post: Resurgence



Users browsing this thread: 1 Guest(s)