CSO Online1 month agoInformation securityBack to the future: Windows Update is now a trojan horse for hackersA vulnerability in Windows Update can make fully patched machines vulnerable to past exploits. [ more ]
The Hacker News1 month agoInformation securityWindows Downgrade Attack Risks Exposing Patched Systems to Old VulnerabilitiesMicrosoft is addressing two vulnerabilities allowing downgrade attacks on Windows update architecture. The vulnerabilities, discovered by SafeBreach Labs researcher Alon Leviev, could lead to privilege escalation and security flaw reintroduction. A tool called Windows Downdate can exploit the vulnerabilities to make fully patched Windows systems vulnerable to past exploits. [ more ]