SophosLabs Offensive Security

Contenuto di SophosLabs Offensive Security

SophosLabs Uncut

Threat Research

CVE-2021-28310

Patch Tuesday

Microsoft’s April update patches 114 bugs—half of which allow remote code execution

April 13, 2021

SophosLabs Uncut

Threat Research

Exchange

Server

SophosLabs Offensive Security releases post-exploitation tool for Exchange

March 9, 2021

SophosLabs Uncut

Threat Research

2021-03

DirectX

DNS Server

Exchange

Exchange Server

Hafnium

HEVC

Internet Explorer

Patch Tuesday

Web shells

webshell

win32k

Windows Update

Critical updates dominate March, 2021 Patch Tuesday releases

March 9, 2021

SophosLabs Uncut

Threat Research

2021-02

CVE-2021-1732

CVE-2021-24074

CVE-2021-24078

CVE-2021-24086

CVE-2021-24094

Patch Tuesday

tcpip.sys

Frag out: four remote attack bugs fixed in Microsoft’s February Patch Tuesday

February 9, 2021

SophosLabs Uncut

2020-12

CVE-2020-17144

Exchange vulnerability

Patch Tuesday

PoC

proof-of-concept

Windows

Critical fixes to Exchange, Excel in the final Patch Tuesday release of 2020

December 8, 2020

SophosLabs Uncut

CVE-2020-16982

CVE-2020-16988

CVE-2020-16998

CVE-2020-17010

CVE-2020-17038

CVE-2020-17053

CVE-2020-17057

CVE-2020-17061

CVE-2020-17087

Microsoft Windows

Patch Tuesday

November Patch Tuesday fixes close 112 holes—including one already being exploited

November 10, 2020

SophosLabs Uncut

2020-10

CVE-2020-16891

CVE-2020-16898

CVE-2020-16911

CVE-2020-16915

CVE-2020-16923

CVE-2020-16947

CVE-2020-16951

CVE-2020-16952

CVE-2020-16966

Microsoft

Patch Tuesday

Top reason to apply October, 2020’s Microsoft patches: Ping of Death Redux

October 13, 2020

SophosLabs Uncut

CVE-2020-1036

CVE-2020-1337

CVE-2020-1380

CVE-2020-1584

CVE-2020-1587

EoP

Patch Tuesday

print spooler

RCE

The 1337est Print Spooler bug fixed in August, 2020’s Patch Tuesday

August 11, 2020

SophosLabs Uncut

Technical analysis: CVE-2020-15654 and a history of Firefox “Browser Lock” bugs

August 3, 2020