Using Microsoft Products?
Do this: Patch immediatley.
Why: Microsoft recently rolled out patches to fix 74 vulnerabilities. The vulnerabilities addressed encompass remote code execution, elevation of privilege, information disclosure, and denial-of-service, amongst others.
Additional Info: https://thehackernews.com/2022/05/microsoft-releases-fix-for-new-zero-day.html?m=1/
Using SonicWall?
Do this: Patch immediatley.
Why: SonicWall recently released patches for three (3) vulnerabilities in its Secure Mobile Access (SMA) 1000 appliances. The vulnerabilities addressed encompass unauthenticated access control bypass, URL redirection to an untrusted site, and the use of a shared and hard-coded cryptographic key.
Additional Info: https://thehackernews.com/2022/05/sonicwall-releases-patches-for-new.html/
Installed Microsoft's May patches?
Do this: Domain Admins are recommended to manually map the certificates to a user in Active Directory until Microsoft officially releases an update.
Why: Microsoft's May patch updates are causing authentication errors and failures tied to Windows Active Directory Domain Services. Microsoft is currently investigating and working on an update addressing the issue.
Additional Info: https://threatpost.com/microsofts-may-patch-tuesday-updates-cause-windows-ad-authentication-errors/179631/
Send Us Your Comments
What did you think of this article? Send us a note to let us know what you liked, would like to see more of, or what we can do better. And don't be surprised if we reach back out with a small 'thank you' gift for your feedback.
