Network Security, Patch/Configuration Management, Vulnerability Management

Microsoft: The patch works

Countering claims that the Web Proxy Autodiscovery Protocol (WPAD) patch Microsoft released last week was ineffective, Maarten Van Horenbeeck, Microsoft Security Response Center program manager, said in a recent blog post that the fix was valid in that “this update will protect you and it should be deployed as soon as possible.” Researchers had said that even with the patch, problems remained that could be used to launch man-in-the-middle attacks on Windows DNS servers. — CAM

An In-Depth Guide to Network Security

Get essential knowledge and practical strategies to fortify your network security.

Related

Novel BellaCiao malware variant launched by Charming Kitten

Attacks with an updated C++ variant of the BellaCiao dropper malware dubbed "BellaCPP" have been deployed by Iranian state-backed threat operation Charming Kitten — also known as APT35, CharmingCypress, CALANQUE, Mind Sandstorm, TA453, Newscaster, and Yellow Garuda — to facilitate further payload delivery, according to The Hacker News.

Related Events

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.

Related Terms

ACK PiggybackingCache PoisoningCircuit Switched NetworkCollisionComputer NetworkCrossover CableDemilitarized Zone (DMZ)Distance VectorDomain Name System (DNS)Dynamic Routing Protocol

You can skip this ad in 5 seconds