Urgent update Archives

Winsage

October 25, 2025

Act Now — Microsoft Issues Emergency Windows Update As Attacks Begin

Microsoft has announced an emergency fix for a critical vulnerability, CVE-2025-59287, affecting Windows Server users, specifically within the Windows Server Update Service (WSUS). The Cybersecurity and Infrastructure Security Agency (CISA) has indicated that attacks exploiting this vulnerability are already occurring. The WSUS Server Role is not enabled by default, meaning only servers with this role activated are at risk unless the fix is applied. CISA has mandated that certain federal agencies address this issue within two weeks and advises organizations to follow Microsoft's guidance to prevent unauthorized remote code execution. Recommended steps include identifying vulnerable servers, applying the security update released on October 23, 2025, and rebooting WSUS servers post-installation. For those unable to update immediately, disabling the WSUS server role and blocking inbound traffic to ports 8530 and 8531 is advised.

Winsage

October 24, 2025

Microsoft issues emergency Windows server security patch – update now or risk attack

Microsoft has released an emergency patch for a critical vulnerability in its Windows Server Update Service (WSUS), identified as CVE-2025-59287, as part of the Patch Tuesday cumulative release on October 14, 2025. The vulnerability, categorized as a "deserialization of untrusted data" issue, has a severity score of 9.8 out of 10 and allows unauthenticated attackers to execute remote code without user interaction, potentially leading to broader network compromises. The flaw can be exploited with low-complexity attacks, and public exploit code has emerged, prompting the urgent update. Organizations are advised to apply the patch promptly to protect their systems.

Winsage

April 13, 2025

Week in review: Microsoft patches exploited Windows CLFS 0-day, WinRAR MotW bypass flaw fixed

Microsoft addressed over 120 vulnerabilities during its April 2025 Patch Tuesday, including a critical zero-day vulnerability (CVE-2025-29824) that is actively exploited. WinRAR users are urged to update to version 7.11 due to a vulnerability (CVE-2025-31334) that allows attackers to bypass Windows' Mark of the Web security feature. Chief Information Security Officers (CISOs) are experiencing security platform fatigue due to the proliferation of multiple security tools. President Donald Trump signed an Executive Order revoking security clearances for Chris Krebs and his colleagues at SentinelOne. Cyber crisis simulations are becoming essential for organizational preparedness against evolving cyber threats. Fortinet has released patches for vulnerabilities, including a critical flaw (CVE-2024-48887) in FortiSwitch appliances. WhatsApp users should update their Windows client app to fix a vulnerability (CVE-2025-30401) that could allow harmful code execution. Kevin Serafin, CISO at Ecolab, discussed aligning security initiatives with business objectives. There is a rise in compromised large language model (LLM) attacks and risks associated with AI autonomy. New open-source tools like the YES3 Scanner and APTRS have been developed to enhance security capabilities. The cybersecurity job market remains strong, with increasing demand for skilled professionals.

Winsage

October 12, 2024

Update Now As Critical Windows 9.8/10 Vulnerability Confirmed

A total of 117 security vulnerabilities were resolved in Microsoft's recent Patch Tuesday update, including five critical zero-day vulnerabilities. One significant vulnerability, CVE-2024-43468, has a critical severity rating of 9.8 out of 10 and affects Microsoft’s Configuration Manager, potentially allowing remote code execution. An unauthenticated attacker could exploit this vulnerability by sending specially crafted requests, enabling command execution on the server and database. Addressing CVE-2024-43468 requires specific actions from administrators, including an in-console update and user confirmation, with additional manual processes needed for secondary sites. Detailed mitigation instructions are available in Microsoft Knowledge Base article KB29166583. Security experts advise immediate updates to prevent exploitation, which could lead to lateral movement across networks and deployment of malicious configurations.

AppWizard

September 3, 2024

Android Auto Users Begging for Emergency Update As Popular App Hits a Black Screen

Android Auto users are experiencing issues with the Everand app, which has a 4.7-star rating and over 10 million downloads. Since late August, the app has displayed a black screen when accessed through Android Auto, although audiobooks continue to play in the background. This issue is linked to a recent update from Everand, not Google. Users have attempted troubleshooting methods like clearing app cache and deleting data, but these have not resolved the problem. Some users report that a recent update fixed the issue, while others still face the black screen. Currently, users can only control playback through their mobile devices. Google is working on enhancing Android Auto with new features, but no timeline for these updates has been provided.

Winsage

July 16, 2024

Microsoft Windows 10 And 11—New Update Warning As ‘Malicious’ Attacks Confirmed

A new zero-day attack targeting Windows 10 and Windows 11 has been discovered, exploiting Internet Explorer which still exists on modern Windows systems. The threat is serious enough that Microsoft and US federal agencies have issued urgent update mandates to protect against ransomware, backdoors, and other malware. Trend Micro attributes the attacks to an APT group called Void Banshee, which targets victims across the US, Asia, and Europe by installing the Atlantida stealer to steal login credentials and security codes. Users are advised to update their Windows PC to disable the threat posed by Internet Explorer.