October 2019 Threat Intelligence (CRITICAL ALERT)
Microsoft has patched 59 vulnerabilities this month, only 9 of which are critical, making this month’s Patch Tuesday the lightest we’ve had in a long time.
For over a year, Microsoft has been actively patching exploited zero-days and more than 80/90 vulnerabilities each month. But this month, there were no zero-days and just 9 bugs that received a critical rating.
Bulky updates in the past often led to patching, messing up Windows features and user systems, so this should reduce the chances of that happening.
The security firm Preempt discovered two NTLM authentication vulnerabilities. Today, they were fixed, bypassing protections put in place by Microsoft to prevent NTLM relay attacks.
These vulnerabilities, assigned CVE IDs 2019-1166 and CVE-2019-133, allow attackers to bypass the MIC (Message Integrity Code) protection on NTLM authentication. CVE-2019-1338 also enables attackers to bypass other NTLM relay mitigations.
Preempt has stated that these are extremely serious vulnerabilities as they could allow attackers to compromise an entire domain through relay attacks.
Security vulnerabilities are hackers’ low-hanging fruit. Patching is essential to keeping your information safe. It is also good practice to back up your system or data before applying any updates.