Microsoft Office – Page 2 – PossibleThreat Articles

June's Patch Tuesday updates focus on Windows, Office

June 16, 2023 0 Comments Microsoft, Microsoft Office, Security, small and medium business, Windows

Microsoft released 73 updates to its Windows, Office, and Visual Studio platforms on Patch Tuesday, with many of them dealing with core, but not urgent, security vulnerabilities. That’s a welcome respite from the previous six months of urgent zero-days and public disclosures. With that in mind, the Readiness testing team suggests a focus on printing and backup/recovery processes to make sure they’re not affected by this update cycle.

For the first time, we see a (non-Adobe) third-party vendor added to a Patch Tuesday release, with three minor plugin updates to Visual Studio for AutoDesk. Expect to see more such vendors added to Microsoft’s updates in the near future. The team at Readiness has created a useful infographic that outlines the risks associated with each of the updates.

To read this article in full, please click here

ComputerWorld Independent

May's Patch Tuesday update includes 3 zero-day flaws; fix them ASAP

May 11, 2023 0 Comments Microsoft, Microsoft Office, Security, small and medium business, Windows

In it’s May update, Microsoft addressed 51 vulnerabilities in Windows, Microsoft Office, and Visual Studio. And with three zero-day flaws to urgently address in Windows (CVE-2023-24932, CVE-2023-29325 and CVE-2023-29336), the focus this month needs to be on rapidly updating both Windows and Microsoft Office. Both platforms get our “Patch Now” recommendation.

To read this article in full, please click here

Security Sophos

May’s Patch Tuesday haul touches a six-pack of product families

May 11, 2023 0 Comments av1, blacklotus, bootkit, cve-2023-24881, cve-2023-24932, cve-2023-24941, cve-2023-29325, cve-2023-29340, Microsoft Office, Microsoft Windows, Patch Tuesday, secure boot, sharepoint, teams, threat research, uefi

Credit to Author: Angela Gunn| Date: Tue, 09 May 2023 19:27:52 +0000

A relatively light month by the numbers, but several patches require extra effort to deploy

ComputerWorld Independent

Patch now to address a Windows zero-day

April 14, 2023 0 Comments Microsoft, Microsoft Office, Security, small and medium business, Windows

Microsoft has addressed 97 existing vulnerabilities this April Patch Tuesday, with a further eight previously released patches updated and re-released. There have been reports of a vulnerability (CVE-2023-28252) exploited in the wild, making it a “Patch Now” release.

This update cycle affects Windows desktops, Microsoft Office, and Adobe Reader. No updates for Microsoft Exchange this month. The team at Application Readiness has provided a helpful infographic that outlines the risks associated with each of the updates for this April update cycle.

To read this article in full, please click here

Security Sophos

A little something for everyone on a patchwork Patch Tuesday

March 14, 2023 0 Comments cve-2023-23392, cve-2023-23397, cve-2023-23411, cve-2023-24880, dynamics, mark of the web, Microsoft, Microsoft Office, Microsoft Windows, Patch Tuesday, postscript, threat research

Credit to Author: Angela Gunn| Date: Tue, 14 Mar 2023 18:58:33 +0000

Even MacOS, iOS, and Android get a piece of the pie in March

QuickHeal Security

Your Office Document is at Risk – XLL, A New Attack Vector

February 21, 2023 0 Comments #malwareattack, cyberattack, cybersecurity, email, excel, information stealer, malware, Microsoft Office, ms office, quick heal, spyware, Uncategorized, vulnerability, xll

Credit to Author: Anjali Raut| Date: Tue, 21 Feb 2023 11:55:22 +0000

Microsoft office documents are used worldwide by both corporates and home-users alike. It’s different office versions, whether…

The post Your Office Document is at Risk – XLL, A New Attack Vector appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.

Independent Krebs Security

Microsoft Patch Tuesday, February 2023 Edition

February 14, 2023 0 Comments cve-2023-21529, cve-2023-21706, cve-2023-21707, cve-2023-21715, cve-2023-21716, cve-2023-21823, cve-2023-23376, dustin childs, immersive labs, internet explorer 11, johannes ullrich, kevin breen, Latest Warnings, mandiant, Microsoft Office, microsoft patch tuesday february 2023, sans internet storm center, security tools, Time to Patch, trend micro zero day initiative

Credit to Author: BrianKrebs| Date: Tue, 14 Feb 2023 21:01:41 +0000

Microsoft is sending the world a whole bunch of love today, in the form of patches to plug dozens of security holes in its Windows operating systems and other software. This year’s special Valentine’s Day Patch Tuesday includes fixes for a whopping three different “zero-day” vulnerabilities that are already being used in active attacks.

Security Sophos

A diverse set of fixes in February’s Patch Tuesday release

February 14, 2023 0 Comments 3d builder, Azure, cve-2023-21689, cve-2023-21690, cve-2023-21692, cve-2023-21715, cve-2023-21716, cve-2023-21808, cve-2023-21809, cve-2023-21812, cve-2023-21815, cve-2023-21823, cve-2023-23376, cve-2023-23381, dynamics, exchange, Microsoft, Microsoft Office, microsoft windows defender, mssql, odbc, Patch Tuesday, peap, postscript, sophos x-ops, threat research, visual studio, Windows

Credit to Author: Matt Wixey| Date: Tue, 14 Feb 2023 19:23:22 +0000

Patches for Power BI, PEAP, PostScript, Exchange, and 3D Builder

ComputerWorld Independent

Patch now to address critical Windows zero-day flaw

January 13, 2023 0 Comments Microsoft, Microsoft Office, Security, small and medium business, Windows

The first Patch Tuesday of the year from Microsoft addresses 98 security vulnerabilities, with 10 classified as critical for Windows. One vulnerability (CVE-2023-21674) in a core section of Windows code is a zero-day that requires immediate attention. And Adobe has returned with a critical update, paired with a few low-profile patches for the Microsoft Edge browser.

We have added the Windows and Adobe updates to our “Patch Now” list, recognizing that this month’s patch deployments will require significant testing and engineering effort. The team at Application Readiness has provided a helpful infographic that outlines the risks associated with each of the updates for this January update cycle.

To read this article in full, please click here

ComputerWorld Independent

Patch Tuesday includes 6 Windows zero-day flaws; patch now!

November 11, 2022 0 Comments Microsoft, Microsoft Office, Security, small and medium business, Windows

Microsoft on Tuesday released a tightly focused but still significant update that addresses 68 reported (some publicly) vulnerabilities. Unfortunately, this month brings a new record: six zero-day flaws affecting Windows. As a result, we have added both the Windows and Exchange Server updates to our “Patch Now” schedule. Microsoft also published a “defense in depth” advisory (ADV220003) to help secure Office deployments. And there are a small number of Visual Studio, Word, and Excel updates to add to your standard patch release schedule.

To read this article in full, please click here