Bill Niester

Blog – Balbix

The March 2024 Patch Tuesday, released on March 12th, addressed a critical wave of security vulnerabilities across various Microsoft products. Let’s dissect this update in detail, exploring the specific threats addressed, updates for different Windows versions, and the importance of staying vigilant. Addressing Critical Vulnerabilities: 60 Patched Microsoft Flaws: This ... Read More

This month, Microsoft announced fixes for 58 new vulnerabilities this month, including 3 new zero-day vulnerabilities, 1 updated to a previously identified zero-day and 3 Microsoft-rated critical vulnerabilities. This month there were 3 new zero-day vulnerabilities disclosed (as well as an update to 1 previously disclosed zero day from September ... Read More

Whether you celebrate Halloween, Día de los Muertos, Guy Fawkes Day (although we’re a little early there), or celebrate something else or nothing at all, there is no denying the security landscape continues to be spooky. Hopefully, this note will help dispel some fear and shed much-needed light on the ... Read More

Fall is here in much of America, and amidst the crunching of football pads and the smashing of apples for cider, violent activity continues relentlessly in the cybersecurity world. Microsoft announced fixes for 62 new CVEs this month, including 5 Microsoft-rated critical vulnerabilities. This month, there were 2 new zero-day ... Read More

Microsoft announced fixes for 86 new CVEs this month, including 6 Microsoft-rated critical vulnerabilities. This month there were 2 new zero-day vulnerabilities disclosed; also, there were 2 updates to previously reported exploitable vulnerabilities (ADV230001 and CVE-2023-36884).  Additionally, there were 2 new advisories and 5 other updates to previously released CVEs ... Read More

Welcome to this month’s edition of the Patch Tuesday release analysis. Here in the US, we’ve just finished celebrating our nation’s freedom. Wouldn’t it be nice if we could all globally celebrate freedom from security vulnerabilities? However, until that happens, we must all remain on guard and vigilant. As part ... Read More

May Microsoft Patch Tuesday Releases fixes for 38 new CVEs including 6 Microsoft-rated critical vulnerabilities and 2 new zero-day vulnerabilities, 1 update to a previously reported exploitable vulnerability as well as 12 other updates to previously released CVEs. This month, Microsoft announced fixes for 78 new CVEs including 6 Microsoft-rated ... Read More

The Derby has been run, summer is nearly here, and the flowers are blooming… but so are the Microsoft security vulnerabilities. So, time to grab your shears and tend your infrastructure garden by addressing this month’s Patch Tuesday issues.  This month, Microsoft announced fixes for 38 new CVEs including 6 ... Read More

April showers bring … well, more new patch fixes from Microsoft. I don’t think that’s how the saying goes but here we are, nonetheless. This month, Microsoft announced patches for 97 new vulnerabilities, including 7 that Microsoft has rated critical, and 1 zero-day (CVE-2023-28252). This release also included updates to ... Read More

Summary: Microsoft disclosed a Microsoft Outlook Vulnerability (an RCE – remote code execution) titled “Microsoft Outlook Elevation of Privilege Vulnerability” and designated as CVE-2023-23397 with its patch Tuesday release (March 14th 2023). This vulnerability is an elevation-of-privilege (EoP) vulnerability in Microsoft Outlook. This means that when the vulnerability is exploited ... Read More