INOC Data Centers’ Post

🚨 A new critical vulnerability has been discovered in the Windows TCP/IP stack that allows zero-click remote code execution (RCE). This flaw can be exploited without any user interaction, posing a serious threat to unpatched systems. Make sure to apply the latest security updates to protect your network.#cybersecurity #windowsvulnerability #RCE https://lnkd.in/gmA2PRXP

CVE-2024-38063 is a remote code execution vulnerability in Windows TCP/IP with a maximum severity rating of Critical and a CVSSv3 score of 9.8! - An attacker can remotely exploit this vulnerability by sending specially crafted IPv6 packets to a target host. - No user interaction is required, making this a “0-click” vulnerability. - Only IPv6 packets can be abused to exploit this vulnerability. https://lnkd.in/gtFcvtD5 #cybersecurity #microsoft

Critical Zero-Day Vulnerability in Windows Exposes User Credentials. A newly discovered zero-day vulnerability affecting all supported and legacy versions of Microsoft Windows allows attackers to capture user NTLM credentials through the simple act of file viewing within Windows Explorer. This vulnerability, disclosed by security researchers at 0patch, poses a significant threat to organizations and individuals alike, as it enables attackers to compromise user accounts with minimal effort. According to 0patch’s security advisory, “The vulnerability allows an attacker to obtain user’s NTLM credentials by simply having the user view a malicious file in Windows Explorer – e.g., by opening a shared folder or USB disk with such file, or viewing the Downloads folder where such file was previously automatically downloaded from attacker’s web page.” This attack vector, exploiting the common practice of file sharing and access, significantly amplifies the potential for widespread exploitation. The implications of this vulnerability are far-reaching, impacting all Windows Workstation and Server versions from Windows 7 and Server 2008 R2 to the latest Windows 11 v24H2 and Server 2022. This comprehensive vulnerability necessitates immediate mitigation strategies to protect sensitive information and prevent unauthorized access. https://lnkd.in/gyBDC9HB

Microsoft today released updates to plug at least 70 security holes in Windows and Windows software, including one vulnerability that is already being exploited in active attacks. The zero-day seeing exploitation involves CVE-2024-49138, a security weakness in the Windows Common Log File System (CLFS) driver -- used by applications to write transaction logs -- that could let an authenticated attacker gain "system" level privileges on a vulnerable Windows device. The security firm Rapid7 notes there have been a series of zero-day elevation of privilege flaws in CLFS over the past few years. "Ransomware authors who have abused previous CLFS vulnerabilities will be only too pleased to get their hands on a fresh one," wrote Adam Barnett, lead software engineer at Rapid7. "Expect more CLFS zero-day vulnerabilities to emerge in the future, at least until Microsoft performs a full replacement of the aging CLFS codebase instead of offering spot fixes for specific flaws." Elevation of privilege vulnerabilities accounted for 29% of the 1,009 security bugs Microsoft has patched so far in 2024, according to a year-end tally by Tenable; nearly 40 percent of those bugs were weaknesses that could let attackers run malicious code on the vulnerable device. https://lnkd.in/eBA8kxXg

🚨 Critical Alert: A 0-click Remote Code Execution (RCE) vulnerability has been discovered in the Windows TCP/IP stack, affecting all systems. 🖥️ This exploit requires no user interaction, making it a severe risk for organizations and individuals alike. ⚠️ 📢 Action Required: Ensure all systems are updated to the latest patches to protect against potential attacks. 🔒 Stay vigilant and secure your network. 🔐 Read more: https://shorturl.at/aP694 #Cybersecurity #WindowsVulnerability #RCE

Critical Vulnerability Discovered in Windows OS A zero-click Windows TCP/IP RCE vulnerability has been identified, impacting all systems with IPv6 enabled (CVE-2024-38063). It is crucial to act promptly by applying the necessary patch to ensure the security of your system. Stay proactive, patch now, and keep your system safe! #CyberSecurity #WindowsOS #PatchNow #secisys

Microsoft has confirmed a new and quite alarming Wi-Fi vulnerability in Windows, which has been rated 8.8 out of 10 in terms of severity using the Common Vulnerability Scoring System. The vulnerability, assigned as CVE-2024-30078, does not require an attacker to have physical access to the targeted computer, although physical proximity is needed. Exploiting this vulnerability can allow an unauthenticated attacker to gain remote code execution on the impacted device. What’s perhaps most concerning, though, is that this Wi-Fi driver security flaw affects all supported versions of the Windows operating system. Read More: https://lnkd.in/d2JPzwYx

Microsoft has identified a new Wi-Fi vulnerability in Windows, rated 8.8 out of 10. The vulnerability, known as CVE-2024-30078, does not require physical access to the targeted computer by an attacker. This flaw could allow an attacker to execute code remotely (RCE) on the affected device. What is most concerning is that this Wi-Fi driver security flaw affects all supported versions of the Windows operating system. Threatdown - https://lnkd.in/dv6d3CfR Vulners - https://lnkd.in/dR6j8YPk Microsoft - https://lnkd.in/duwTuMAt

In this hyper-connected digital era, cybersecurity is no longer an option, but a necessity. 'Internet Kill Switch' is becoming one of the most important tools in our security arsenal. In an increasingly connected world, internet security is becoming inseparable from everyday life. #Administrator #Application #Computer #ControlPanel #Dashboard #DOS #Firewall #Internet #Network #Networking #operatingsystem #PATH #PowerShell #Script #Security #Security #settings #settings #Software #VPN #Vulnerability #Windows #WindowsDefender #WindowsFirewall

🚨 Critical Node.js Flaw Lets Attackers Execute Malicious Code on Windows Machines Cyber Security News ® This flaw, identified as CVE-2024-27980, allows attackers to execute arbitrary commands on affected systems, posing a serious risk to applications and services built on Node.js. Read more: https://lnkd.in/di-myvSU #cybersecuritynews #vulnerability