Patch Overkill? Microsoft Plasters Over Its Digital Cracks

Tuesday was Microsoft’s July 2024 Patch Tuesday, and boy, do we have a laundry list of digital boo-boos they’ve tried to mend. A whopping 142 security updates, with some already out in the wild wreaking havoc. Let’s dive into this cyber patchwork quilt, shall we?

First off, two zero-days have been acting like double agents, actively exploited and waving "Hi!" in everyone's faces. Then, there are two more zero-days that just couldn't keep their flaws under wraps. Among these, the bell of the ball is CVE-2024-38080 – a Hyper-V elevation privilege flaw that lets attackers play puppeteer with SYSTEM privileges. Sneaky, sneaky! And there's CVE-2024-38112, which plays a dangerous game of masquerade with MSHTML, requiring attackers to court their victims with a malicious file—oh, the drama!

For those of you not fluent in tech jargon, imagine if your house had 142 tiny doors you didn’t know about, and burglars just found the keys. Microsoft is essentially changing the locks.

Here’s the breakdown:

• CISA is like that nosy neighbor warning everyone about potential pranks (read: OS command injection vulnerabilities).
• Elevation of Privilege: 26 ways your system might accidentally crown someone king.
• Security Feature Bypass: 24 ways to sneak past the club bouncer.
• Remote Code Execution: 59 ways to let someone dance on your digital dance floor without an invite.
• Information Disclosure: 9 little TMI (too much information) leaks.
• Denial of Service: 17 ways to crash your party.
• Spoofing: 7 ways to convince you they are someone they’re not.

What can you do to avoid these digital shenanigans? Keep your systems updated! It’s like taking your car in for a service; it might be a hassle, but it beats having the engine fall out while you’re on the highway. So, if you are the self service type it's time to update your Windows.

How to Update Your Windows:

1. Start by hitting the Start menu, then go to 'Settings'.
2. Navigate to 'Update & Security'.
3. In the Windows Update tab, click 'Check for updates'.
4. If updates are available, press 'Download and install'.
5. Once the updates are downloaded, you might need to restart your computer. Go ahead and give it a reboot to seal the deal!

If all this tech talk sounds like gibberish and you'd rather not deal with these 142 headaches, that’s where Crosslin Technologies swoops in! We specialize in managing these pesky updates and keeping the cyber burglars at bay with our Managed Services. Let us handle the techy stuff, so you can focus on what you do best.

Feel like sharing this nugget of wisdom? Pass this newsletter along and hit that subscribe button for more deciphered tech drama, courtesy of Crosslin Technologies. Stay safe and patch up!