This month, Microsoft have patched 36 vulnerabilities; with 7 ranked critical. This means the final Patch Tuesday of 2019 is the smallest we've had all year. One of the 'Important' vulnerabilities fixed today is a zero-day privilege elevation vulnerability that was discovered being actively exploited in the wild. All users are advised to to install these security updates as soon as possible to ensure you're protected from Windows from these security risks. Full information on this months patches can be found here: https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2019-Dec
This vulnerability is titled "CVE-2019-1458 | Win32k Elevation of Privilege Vulnerability" and could allow an attacker to execute commands in kernel mode, which means that it has full access to the operating system.
This Windows vulnerability was chained together with a Chrome zero-day as part of an attack called Operation WizardOpium that was detected last month.
In addition to the security updates, Microsoft released two advisories this week. One is a servicing stack update and the other provides guidance on removing orphaned Windows Hello for Business (WHfB) public keys created by vulnerable TPM devices.
Security vulnerabilities are hackers' 'low-hanging fruit'. Patching is essential to keeping your information safe. It is also good practice to back up your system or data before applying any updates.
CyberOne is a government-approved Cyber Security and IT Managed Service Provider, supporting clients 24x7 from our ISO27001-accredited UK Security Operations Centre (SOC). Located at the heart of a high-security, controlled-access Tier 3 data centre, CyberOne's state-of-the-art UK Cyber Defence Centre (SOC) targets, hunts, and disrupts hacker behaviour as part of a multi-layered security defence to help secure some of the UK's leading organisations.