Recent posts

#1
Security Alerts & Briefings / Microsoft September 2024 Secur...
Last post by Corrine - September 10, 2024, 05:45:54 PM
The Microsoft September 2024 security updates have been released and consist of 79 new patches to Microsoft products.

Of the Microsoft CVEs released, 7 are rated critical, 71 important, and 1 moderate in security. At the time of release, one of the CVEs is listed as being publicly known and four are listed as under active attack.

The security updates apply to the following products, features and roles: Windows and Windows Components; Office and Office Components; Azure; Dynamics Business Central; SQL Server; Windows Hyper-V; Mark of the Web (MOTW); and the Remote Desktop Licensing Service.

See the list of KBs at the bottom of the page at September 2024 Security Updates - Release Notes - Security Update Guide - Microsoft for information regarding known issues with the security updates as well as the CVEs with FAQs, Mitigations and/or Workarounds. For specific information on Windows 11, Versions 23H2 and 22H2, see KB5043076. For Windows 10, Versions 22H2 and 21H2, see KB5043064 (OS Builds 19044.4894 and 19045.4894).

Recommended Reading: See Dustin Childs review and analysis in Zero Day Initiative -- The September 2024 Security Update Review.
#2
Adobe is releasing an update with bug fixes and new features for end users described in the New features summary as well as security updates for Acrobat and Reader. 

The security updates provide mitigations for vulnerabilities described in the corresponding security bulletins for Reader and Acrobat.

Update or Complete Download
Adobe Acrobat and Reader were updated to version 24.003.20112 for Windows.  Updates should become available via the internal updater or checks can be manually activated by choosing Help/Check for Updates. 

Reader DC and other versions are available here: https://get.adobe.com/reader/

Note: UNcheck any pre-checked additional options presented with the update. They are not part of the software update and are completely optional.

Release Notes
#3
Security Alerts & Briefings / Pale Moon Version 33.3.1 Relea...
Last post by Corrine - September 10, 2024, 01:06:52 PM
Pale Moon has been updated to version 33.3.1. This is a minor security and bug fix update.

Changes/fixes:

  • Backed out support for FFmpeg 7.0/libavcodec 61 (Linux) due to it causing a major regression in WebAudio (broken on all platforms). This is being worked on to re-land at a later date.
  • Restricted the NotifyPaintEvent interface to chrome code only; there is no reason (other than potential tracking/fingerprinting) to have this accessible from content.
  • Fixed a potentially exploitable issue in JavaScript (FetchName).
  • Fixed a code correctness issue in XPConnect when creating sandboxes. DiD
  • Added a warning for using externally handled usenet protocols.
  • Security issues addressed: CVE-2024-8383 and CVE-2024-8381.

Notes:

*DiD This means that a fix is "Defense-in-Depth": It is a fix that does not apply to a (potentially) actively exploitable vulnerability in Pale Moon, but prevents future vulnerabilities caused by the same code, e.g. when surrounding code changes, exposing the problem, or when new attack vectors are discovered.

Pale Moon includes both 32- and 64-bit versions for Windows: Pale Moon for Windows downloads.

Update: To get the update now, select "Help" from the Pale Moon menu at the upper left of the browser window. Select About Pale Moon > Check for Updates.

Release Notes
#4
Security Alerts & Briefings / Re: security breech
Last post by winchester73 - September 06, 2024, 11:51:24 PM
It doesn't take much effort ... "necessary" is rather subjective.
#5
Security Alerts & Briefings / Re: security breech
Last post by pastywhitegurl - September 06, 2024, 03:47:08 PM
Never heard of LexusNexus or Innovis.  I have had my Experian, Transunion, and Equifax frozen for a long time.   How necessary is it to add these other two?
#6
Dev Channel update to 130.0.2808.0 is live

Improved Reliability:
  • Fixed an issue where browser would crash when clicking 'Permissions and Privacy' on any site in the sidebar.
  • Fixed an issue where; after logging out, the Favorites hub displayed the workspace. Clicking on the workspace would cause the browser to crash.
  • Fixed an issue where browser would crash when dragging a tab to create a new window on iOS.

Changed Behavior:
  • Resolved an issue where the 'Magnify Image' tooltip was not displaying for the close button.
  • Resolved an issue where the 'Open in new...' button was unavailable when right-clicking an item in the Favorites Hub/Panel.
  • Resolved an issue where the tab actions menu hub closed after opening a group tab in a new tab within the window card under the tab actions menu.
  • Fixed an issue where the banner title would not display normally after right-clicking 'Show Media Control' and hovering over the browser icon.
  • Fixed an issue where icons were missing in the settings under the sidebar.                 
  • Android:
    • Resolved an issue where a colored circle icon appeared in the upper left corner of the tab group on android.
    • Resolved an issue where the input box was not displayed when editing Top sites names on Android on new tab page.
    • Fixed an issue where menu items were displayed abnormally in the overflow menu while in InPrivate mode on android.
  • iOS:
    • Resolved an issue where users couldn't scroll down to view feeds on iOS.
    • Fixed an issue where the upper left corner of the profile popover was not rounded in the account panel on iOS.     
#7
Security Software Programs / Re: Malwarebytes Version 5 Upd...
Last post by Corrine - September 05, 2024, 03:39:02 PM
Malwarebytes v5.1.10.127 component package 1.0.50210 released.

From Malwarebytes 5:

Features and improvements
  • Data breach results now sorted chronologically (newest on top) for Digital footprint scans
  • Added check for available disk space before downloading updates
  • Minor Tamper Protection improvements
  • Reduced disk space usage
  • Deprecated the Application updates option to notify when a new version is available in Settings

Issues fixed
  • Crash reductions
  • Small UI bugs
#8
Security Software Programs / Re: SpywareBlaster Updates
Last post by ky331 - September 04, 2024, 12:50:28 AM
SpywareBlaster database update 9/3/2024


13 NEW items (IE/ActiveX)

10 NEW items (Edge/Scripts)

for a total of 19,292 items in database

After updating, be sure to manually enable all protection.
#9
Announcing Windows 11 Insider Preview Build 27695 (Canary Channel) Update

Changes and Improvements

[Settings]
  • [ADDED 9/3] We've updated the dialog when viewing your Wi-Fi password under Settings > Network & internet to match the Windows 11 visuals.
#10
Announcing Windows 11 Insider Preview Build 22635.4145 (Beta Channel) Update

Changes and Improvements gradually being rolled out to the Beta Channel with toggle on

[Start menu]
  • [ADDED 9/3] Based on feedback, we've made some updates to the new account manager on the Start menu making the sign out option directly visible, and adding a list of signed in users under "..." so it's faster to switch accounts.
[Input]
  • [ADDED 9/3] We're beginning to roll out a new Gamepad keyboard layout for the on-screen keyboard in Windows 11 that supports the ability to use your Xbox controller to navigate and type. This includes button accelerators (example: X button for backspace, Y button for spacebar) additionally the keyboard keys have been vertically aligned for better controller navigation patterns.