Did you get your patch tuesday on? Windows each month provides updates to your operating system so that it can be as secure as possible.
This month, the Redmond based company released 83 security updates with 7 of them disclosed through the Zero Day Initiative otherwise known as ZDI. The ZDI was recently covered in a recent security podcast we do called the Security Box.
There is information in both of these articles from Krebs and Trend that you should read. Microsoft Patch Tuesday, January 2021 Edition and January Patch Tuesday Repairs Critical MS Defender RCE Bug should be read for their content and you decide what you want to read.
Do you want to read more about the Zero Day Initiative? No problem! Here’s a link to the Zero Day initiative web site for those who want to learn more about what Trend and companies involved do.
Here are the headings within Trend Micro’s article that might be of interest:
- Critical flaw in Windows Defender can lead to RCE
- >;Microsoft splwow64 bug possibly next in line for active exploitation
- RCE from vulnerable HEVC video extensions, Visual Studio
and don’t forget the heading talking about their own solutions. I’d definitely be concerned if you use defender, as the disabled community’s choice is only defender for AntiVirus. I’ve written about this in a 2017 piece talking about AntiVirus and the disabled. I’ve also talked about AntiVirus in this 2020 piece asking if this field is dead.
I honestly think that AntiVirus will never change, but finding a flaw in the only piece of software the blind and disabled can easily use is not acceptible. I’m sure it was an oversite, but something I’m at least concerned about.
Find something within these articles you’d like to discuss? Bring it on, let me know what concerns you. Thanks for listening, reading and participating!