SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS ISC Stormcast, Jan 14 2025: Microsoft Patch Tuesday, FortiOS and FortiProxy Patches; Paessler PRTG Patches
9 snips
Jan 15, 2025 Microsoft's latest Patch Tuesday updates reveal 209 fixed vulnerabilities, including critical ones that have been actively exploited. The discussion highlights specific risks these vulnerabilities pose to network security. Fortinet raises alarms about an unpatched Node.js authentication bypass that could grant attackers super-admin privileges on FortiOS devices. The podcast also emphasizes the importance of securing admin interfaces and managing software vulnerabilities effectively.
AI Snips
Chapters
Transcript
Episode notes
Microsoft Patch Tuesday Overview
- Microsoft's Patch Tuesday addressed 209 vulnerabilities, 12 critical.
- Three actively exploited zero-days affect Microsoft Access, requiring a user to open a malicious file.
Mitigate NTLM Hash Leakage
- Address NTLM hash leakage vulnerabilities.
- Many such vulnerabilities likely remain unaddressed.
Critical Vulnerabilities
- Critical vulnerabilities exist in Azure Marketplace, Branch Cache, Digest authentication, Excel, Purview, and Spinego.
- Digest and Spinego vulnerabilities have a substantial attack surface due to widespread use.