Recently Browsing 0 members
No registered users viewing this page.
Colonial Pipeline was using vulnerable, outdated version of Microsoft Exchange
by Subir Kathuria
A forensic report of the Colonial Pipeline noted that the "most likely culprit" within the company’s IT infrastructure was the vulnerable Microsoft Exchange services, as noted by New York Times reporter Nicole Perlroth, though there were several other issues that researchers characterized as an overall "lack of cybersecurity sophistication."
The Cybersecurity and Infrastructure Security Agency warned pipeline operators about potential ransomware attacks in 2020 and offered a number of potential mitigation strategies. The FBI confirmed that it believes the DarkSide ransomware is responsible for the attack. DarkSide is a criminal group with origins in Russia.
Microsoft has published many advisories about the importance of keeping the On-Premise Exchange Servers up to date due to several vulnerabilities being exploited in the wild. The latest updates were released in April 2021 after a report from NSA. Exchange Online was not affected by these issues.
Colonial Pipeline took its systems down to contain the threat. Its major pipelines were still down as of Tuesday. The pipeline transports 100 million gallons of fuel each day, including 45% of all fuel consumed on the East Coast. Its products range from various grades of gasoline, diesel fuel, home heating oil, jet fuel, and fuels for the U.S. military.
On Monday night, Line 4, which runs from Greensboro, North Carolina, to Woodbine, Maryland, was temporarily operating under manual control while existing inventory is available, the company said.
By Abhay V
Latest Edge Dev build adds minor new features, won't be heading to Linux users just yet
by Abhay Venkatesh
Microsoft today released a new Edge Dev build, bumping the version to 92.0.884.2. While this is the third build to be released from major version 92, it is still light on features, with today’s build adding just two new minor features, along with the usual crop of bug fixes and reliability improvements.
The firm also notes that the Linux users running Dev channel builds will not be receiving an update today due to issues with the build’s development. The company aims to release an update later this week but isn’t promising anything concrete in terms of timelines. Additionally, the Edge team is also highlighting the reverse image search feature being added to the sidebar.
As for the two features being added today, here is the changelog:
As usual, the build also brings with it a bunch of fixes to improve the reliability of the browser. Here is the complete list:
And there are a bunch of fixes to address changed behavior. This includes fixes for issues with Settings that can lead to the page going blank. It also addresses GPU memory leaks when playing certain videos. However, there is no mention of the bug that causes the browser to crash when viewing YouTube videos, something that the firm acknowledged last week. Here is the list of fixes:
Lastly, the firm has listed the known issues that users must be aware of when installing the build. Here is the complete list:
As a reminder, Edge Beta is now available for Linux, so those who want to try out the browser have an additional, more stable option to choose from. As usual, today’s Dev channel update should automatically be downloaded and installed by the browser in the background. However, you can head into the About Microsoft Edge settings to force check for updates and pull it manually.
By Steven P.
Microsoft PowerToys version 0.37.2 fixes explorer.exe freezing and more
by Steven Parker
Almost two weeks ago, Microsoft released PowerToys version 0.37 that brought with it a bunch of improvements to the suite of tools, removing the legacy settings app and moving the Keyboard Manager into an independent process as well as the ongoing process to ready the Video Conference Mute tool for a stable release. Today, the firm is releasing a minor update to fix a few issues in the tools, bumping up the version to 0.37.2.
The company says that the patch aims to fix two regression bugs in 0.37.0 they deemed important for stability based on user feedback.
Here is the complete list of fixes (it's a short one), along with links to the corresponding issue trackers:
PowerRename is a Bulk Renaming tool for Windows 10 If you want the Video Conference Mute utility, you'll need to install the experimental version which was released in the middle of April.
As usual, this release can be downloaded from the GitHub page here, or directly through the tool. It must be noted, however, that users running the experimental version will not receive this update. The next release for those users will contain all the fixes made to the tools in version 0.37.2.
By Usama Jawad96
Microsoft Threat and Vulnerability Management now supports Linux
by Usama Jawad
Microsoft's Threat and Vulnerability Management (TVM) suite allows organizations to improve security configurations of their devices. It offers insights to discover threats, automatically prioritizes issues, and allows companies to remediate vulnerabilities seamlessly. Previously, these capabilities were only available on Windows and macOS, but Microsoft has now extended support to Linux as well.
Currently supported Linux operating systems include RHEL, CentOS, and Ubuntu. Support will be rolling out for Oracle Linux, SUSE, and Debian soon as well.
TVM capabilities can be directly managed from Microsoft Defender for Endpoint. Furthermore, its APIs can be called to get access to the underlying dataset which includes vulnerability assessments and software inventory, among other things. This also means that security partners can utilize these APIs to get access to this data and build their own custom solutions.
Microsoft went on to say that:
Apart from general availability of TVM for Linux, the secure configuration assessment component is now also in public preview for macOS and Linux. It was only available on Windows and Windows Server devices previously. You can find out more about it here.
In terms of next steps, Microsoft says that it plans to improve the interoperability of its TVM solution by partnering with other integration and solution providers. Additionally, support for TVM on Android and iOS is also expected "later this summer", although we don't have a firm release date as of yet.
By Abhay V
Outlook on the desktop facing issues, prevents users from viewing and composing emails [Update]
by Abhay Venkatesh
In what may be frustrating for Outlook users on the desktop, a bug is preventing them from composing or seeing email content, rendering the service useless in some ways. The company has acknowledged the issue on Twitter and on the service status page. It has noted that it has found the root cause of the issue and is applying a fix. The message notes that the web and mobile versions are not affected.
It is currently not clear what is causing the issue, though the problem seems to be affecting many users. We can confirm that the problem indeed exists on the desktop client where text in the compose box seems to vanish on hitting enter, making it impossible to draft an email. Content in the Inbox too either draws a blank or only displays the first line. Some Twitter responses seem to suggest that the issue affects those running perpetual license versions of the tool as well, in addition to Microsoft 365 versions.
Folks over at BleepingComputer suggest that the problem might be caused by a recent update to the Office suite of apps. The publication, along with a few users on Twitter, has posted a workaround for the issue, which includes running a Command Prompt script to roll back to a previous version of Outlook, effectively removing the faulty update. However, Microsoft has already begun rolling out a fix and says that the update should gradually roll out to all users in the next few hours. Users will need to restart Outlook for the fix to be applied, the firm adds.
Update: Here's the complete statement from the firm: