One of the fixes patches up a flaw that hackers are currently exploiting, so be sure to update your copy of Windows ASAP.
It’s that time again; Microsoft has pushed out a new patch for Patch Tuesday, and this one contains some good security fixes. This new update for Windows systems fixes up seven bugs labeled as “critical,” alongside 67 more less-serious bugs to help make Windows as secure as possible.
A Big Security Patch From Microsoft
As spotted by ZDNet, Microsoft has posted a list of all the fixes in this Patch Tuesday on Microsoft MSRC. The documentation is a little dense, so it’s a bit hard to pick through it to see what the update fixes.
However, the most significant change in this patch is CVE-2022-26925. This addition is titled “Windows LSA Spoofing Vulnerability,” and is described like this:
An unauthenticated attacker could call a method on the LSARPC interface and coerce the domain controller to authenticate to the attacker using NTLM. This security update detects anonymous connection attempts in LSARPC and disallows it.
If this sounds confusing to you, don’t worry; even Microsoft marks this exploit with a high complexity rating. But the main point here is not how easy it is to do, but how many hackers are currently using this exploit in the field.
Patch Tuesday usually fixes exploits of ranging severity. Researchers and white-hat hackers will discover some of them, who tell Microsoft about the exploits in secrets so they’re never abused. And some of them, such as this LSA spoofing attack, are already rampant on the internet.
As such, it’s a good idea to download the latest Windows updates and get these exploits fixed. It’s the best way to ensure that your system stays protected against some of the most vicious attacks on the internet.
Another Essential Patch for Windows Users
If you’re using a computer that’s always connected to the internet, installing security updates is very important. These act as your best line of defense against exploits, as they block up the flaws in the armor of a system and keep hackers at bay.
However, this update won’t fix every bug. The Redmond giant has listed all the issues it knows that will persist through this update on Microsoft Support, so be sure to give that a read and see what issues won’t get fixed this time around.
Keeping Yourself Safe Online
With Microsoft publishing more security fixes for Windows, now is an excellent time to do an update check and ensure you’re up-to-date. After all, the best defense against an attack is to plug up the entryway and stop them from happening in the first place.
