
SophosLabs Offensive Security
Content by SophosLabs Offensive Security

SophosLabs Uncut
Threat Research
CVE-2021-28310
Patch Tuesday
Microsoft’s April update patches 114 bugs—half of which allow remote code execution
April 13, 2021

SophosLabs Uncut
Threat Research
Exchange
Server
SophosLabs Offensive Security releases post-exploitation tool for Exchange
March 9, 2021

SophosLabs Uncut
Threat Research
2021-03
DirectX
DNS Server
Exchange
Exchange Server
Hafnium
HEVC
Internet Explorer
Patch Tuesday
Web shells
webshell
win32k
Windows Update
Critical updates dominate March, 2021 Patch Tuesday releases
March 9, 2021

SophosLabs Uncut
Threat Research
2021-02
CVE-2021-1732
CVE-2021-24074
CVE-2021-24078
CVE-2021-24086
CVE-2021-24094
Patch Tuesday
tcpip.sys
Frag out: four remote attack bugs fixed in Microsoft’s February Patch Tuesday
February 9, 2021

SophosLabs Uncut
2020-12
CVE-2020-17144
Exchange vulnerability
Patch Tuesday
PoC
proof-of-concept
Windows
Critical fixes to Exchange, Excel in the final Patch Tuesday release of 2020
December 8, 2020

SophosLabs Uncut
CVE-2020-16982
CVE-2020-16988
CVE-2020-16998
CVE-2020-17010
CVE-2020-17038
CVE-2020-17053
CVE-2020-17057
CVE-2020-17061
CVE-2020-17087
Microsoft Windows
Patch Tuesday
November Patch Tuesday fixes close 112 holes—including one already being exploited
November 10, 2020

SophosLabs Uncut
2020-10
CVE-2020-16891
CVE-2020-16898
CVE-2020-16911
CVE-2020-16915
CVE-2020-16923
CVE-2020-16947
CVE-2020-16951
CVE-2020-16952
CVE-2020-16966
Microsoft
Patch Tuesday
Top reason to apply October, 2020’s Microsoft patches: Ping of Death Redux
October 13, 2020

SophosLabs Uncut
CVE-2020-1036
CVE-2020-1337
CVE-2020-1380
CVE-2020-1584
CVE-2020-1587
EoP
Patch Tuesday
print spooler
RCE
The 1337est Print Spooler bug fixed in August, 2020’s Patch Tuesday
August 11, 2020

SophosLabs Uncut
Technical analysis: CVE-2020-15654 and a history of Firefox “Browser Lock” bugs
August 3, 2020