.Net, Network and SMB - CTO Universe

Microsoft’s September 2024 Patch Tuesday Addresses 79 CVEs (CVE-2024-43491)

Tenable

SEPTEMBER 10, 2024

Microsoft notes that only optional components enabled from the following list are affected: NET Framework 4.6 As with other EoP vulnerabilities, these vulnerabilities are often used as part of post-compromise activity in order to further compromise a network using elevated account privileges. Advanced Services ASP.NET 4.6

Windows

Windows Azure Authentication SMB

Fintech Brex bets big on software, lands DoorDash as a customer

TechCrunch

APRIL 13, 2022

We’re very focused on signing up net new large enterprise customers and DoorDash is the first of many, with lots to come,” Brex co-CEO and co-founder Henrique Dubugras said in an interview. While it will still serve startups, Brex wants to be able to support startups as they grow, as well as enterprises that are already huge.

Fintech

Fintech Software Travel SMB

Microsoft’s April 2022 Patch Tuesday Addresses 117 CVEs (CVE-2022-24521)

Tenable

APRIL 12, 2022

This month’s update includes patches for: NET Framework. Windows Network File System. Windows SMB. CVE-2022-24491 | Windows Network File System Remote Code Execution Vulnerability. CVE-2022-24491 is a critical RCE vulnerability in the Windows Network File System (NFS) that received a CVSSv3 score of 9.8 9 Critical.

Windows

Windows Systems Review Software Review SMB

Webinars

Prepare Now: 2025s Must-Know Trends For Product And Data Leaders

From Start to Scale: Driving Growth Through Seamless Payments Implementation

MORE WEBINARS

Microsoft’s March 2022 Patch Tuesday Addresses 71 CVEs (CVE-2022-23277, CVE-2022-24508)

Tenable

MARCH 8, 2022

This month’s update includes patches for: NET and Visual Studio. Windows SMB Server. Privilege escalation is a common tactic used after an initial compromise or entry to a network by threat actors. NET and Visual Studio Remote Code Execution Vulnerability. 3 Critical. 68 Important. 0 Moderate. Azure Site Recovery.

Windows

Windows Authentication SMB .Net

Microsoft’s August 2022 Patch Tuesday Addresses 118 CVEs (CVE-2022-34713)

Tenable

AUGUST 9, 2022

This month’s update includes patches for: NET Core. Windows Network File System. CVE-2022-35804 | SMB Client and Server Remote Code Execution Vulnerability. CVE-2022-35804 is a RCE vulnerability affecting both the Server Message Block (SMB) client and server on Windows 11 systems using Microsoft SMB 3.1.1

SMB

SMB Azure Windows Disaster Recovery

Microsoft’s June 2022 Patch Tuesday Addresses 55 CVEs (CVE-2022-30190)

Tenable

JUNE 14, 2022

This month’s update includes patches for: NET and Visual Studio. Windows Network Address Translation (NAT). Windows Network File System. Windows SMB. CVE-2022-30136 | Windows Network File System Remote Code Execution Vulnerability. CVE-2022-30136 | Windows Network File System Remote Code Execution Vulnerability.

Windows

Windows Azure Internet SMB

Microsoft’s May 2021 Patch Tuesday Addresses 55 CVEs (CVE-2021-31166)

Tenable

MAY 11, 2021

This month's Patch Tuesday release includes fixes for: NET Core & Visual Studio. Windows SMB, Windows SSDP Service. Windows Wireless Networking. Microsoft patched 55 CVEs in the April 2021 Patch Tuesday release, including four CVEs rated as critical, 50 rated as important and one rated as moderate. Internet Explorer.

Windows

Windows SMB Wireless .Net

Analyzing the Vulnerabilities Associated with the Top Malware Strains of 2021

Tenable

AUGUST 4, 2022

Windows SMB remote code execution (EternalBlue). NET Framework remote code execution. Ultimately, vulnerabilities like CVE-2017-11882, CVE-2017-0199 and CVE-2021-40444 are just vehicles for threat actors to gain initial access into a targeted network. CVE-2017-0144. CVE-2017-0199. Microsoft Office/WordPad remote code execution.

Malware

Malware Windows SMB Groups

Cybersecurity Snapshot: 6 Things That Matter Right Now

Tenable

AUGUST 19, 2022

This 16-page guide offers SMBs “an action plan for ransomware mitigation, response and recovery” and recommends 40 safeguards, including: Identify what’s on your network, both in terms of technology being used and of data being stored or transmitted. Windows SMB remote code execution (EternalBlue). CVE-2017-0144. CVE-2017-0199.

IoT

IoT Malware Windows Guidelines

Microsoft’s July 2021 Patch Tuesday Includes 116 CVEs (CVE-2021-31979, CVE-2021-33771)

Tenable

JULY 13, 2021

NET Runtime. Windows SMB. Based on the scores provided, exploitation of these flaws would require a low privileged account, presumably with the ability to send crafted DNS requests across the network, to target an affected DNS Server. Microsoft Windows Codecs Library. Microsoft Windows DNS. Microsoft Windows Media Foundation.

Windows

Windows Software Review Malware SMB

ZombieBoy

AlienVault

JULY 18, 2018

CVE-2017-0143, SMB exploit. CVE-2017-0146, SMB exploit. exe obtains the ip of the victim by connecting to ip[dot]3222[dot]net. It then uses WinEggDrop, a lightweight TCP scanner to scan the network to find more targets with port 445 open. In addition, it appears to have a C2 server at dns[dot]posthash[dot]org.

Malware

Malware SMB Analysis System

Sequoia and Andreessen Horowitz invested more in fintech than any other sector in 2022

TechCrunch

FEBRUARY 26, 2023

In Q4 2022, Bunq’s net fee income grew by 37 per cent compared to Q4 2021, and user deposits grew by 64 per cent compared to €1.8B JPMorgan acquired a stake in the Athens-based SMB-focused fintech in early 2022. in the last quarter of 2022. at the end of 2022.” More on Bunq here. More details can be found on its careers page.

Fintech

Fintech Real Estate Banking Blockchain

Fintech Roundup: The gloves are off in the spend management space

TechCrunch

APRIL 17, 2022

That company said it is making a big push into the SMB space and going head-to-head with fast-growing startups like Brex and Ramp. Controlling the transaction from the issuer to the card network through its processing partner further enables Zact to capture all of the interchange and share more of it with its partners and customers, he added.

Fintech

Fintech Real Estate Travel Banking

Microsoft’s September 2024 Patch Tuesday Addresses 79 CVEs (CVE-2024-43491)

Fintech Brex bets big on software, lands DoorDash as a customer

Microsoft’s April 2022 Patch Tuesday Addresses 117 CVEs (CVE-2022-24521)

Webinars

Microsoft’s March 2022 Patch Tuesday Addresses 71 CVEs (CVE-2022-23277, CVE-2022-24508)

Microsoft’s August 2022 Patch Tuesday Addresses 118 CVEs (CVE-2022-34713)

Microsoft’s June 2022 Patch Tuesday Addresses 55 CVEs (CVE-2022-30190)

Microsoft’s May 2021 Patch Tuesday Addresses 55 CVEs (CVE-2021-31166)

Analyzing the Vulnerabilities Associated with the Top Malware Strains of 2021

Cybersecurity Snapshot: 6 Things That Matter Right Now

Microsoft’s July 2021 Patch Tuesday Includes 116 CVEs (CVE-2021-31979, CVE-2021-33771)

ZombieBoy

Sequoia and Andreessen Horowitz invested more in fintech than any other sector in 2022

Fintech Roundup: The gloves are off in the spend management space

Stay Connected