A Big Security Patch From Microsoft
As spotted by ZDNet, Microsoft has posted a list of all the fixes in this Patch Tuesday on Microsoft MSRC. The documentation is a little dense, so it’s a bit hard to pick through it to see what the update fixes.
However, the most significant change in this patch is CVE-2022-26925. This addition is titled “Windows LSA Spoofing Vulnerability,” and is described like this:
If this sounds confusing to you, don’t worry; even Microsoft marks this exploit with a high complexity rating. But the main point here is not how easy it is to do, but how many hackers are currently using this exploit in the field.
Patch Tuesday usually fixes exploits of ranging severity. Researchers and white-hat hackers will discover some of them, who tell Microsoft about the exploits in secrets so they’re never abused. And some of them, such as this LSA spoofing attack, are already rampant on the internet.
As such, it’s a good idea to download the latest Windows updates and get these exploits fixed. It’s the best way to ensure that your system stays protected against some of the most vicious attacks on the internet.
Another Essential Patch for Windows Users
If you’re using a computer that’s always connected to the internet, installing security updates is very important. These act as your best line of defense against exploits, as they block up the flaws in the armor of a system and keep hackers at bay.
However, this update won’t fix every bug. The Redmond giant has listed all the issues it knows that will persist through this update on Microsoft Support, so be sure to give that a read and see what issues won’t get fixed this time around.
Keeping Yourself Safe Online
With Microsoft publishing more security fixes for Windows, now is an excellent time to do an update check and ensure you’re up-to-date. After all, the best defense against an attack is to plug up the entryway and stop them from happening in the first place.
