Microsoft has urgently released an update for Windows 10 to fix a serious issue causing BitLocker encryption to malfunction. The problem occurs after installing the KB5034441 security update, which was supposed to patch vulnerabilities in the Windows Recovery Environment (WinRE). What Went Wrong? The update was intended to close a security hole (CVE-2024-20666) that could allow attackers to bypass BitLocker encryption….
Tag: Microsoft
Scheduled Password Changes Are an Outdated Practice
Hi for All and have a nice time, so today we are talking about passwords (ready?) Let’s think! • In most IT systems and various companies, mandatory periodic password changes are a common rule. At my company, passwords must be changed every three months. Do you think this approach is correct? After all, this practice…
Microsoft Fixes Power Pages Zero-Day Exploited in Attacks: A Deep Dive
Microsoft has recently patched a critical zero-day vulnerability in its Power Pages platform, which had been actively exploited in targeted attacks. The flaw, tracked as CVE-2025-24989, is a high-severity elevation of privilege vulnerability that allowed attackers to bypass user registration controls and gain unauthorized access to sensitive systems. Here’s a detailed breakdown of the issue,…
Microsoft has released a tool to restore Windows devices affected by the CrowdStrike update
Microsoft has released a tool that helps IT professionals quickly restore Windows computers that fail after a CrowdStrike update. This problem affected 8.5 million devices worldwide and disrupted the work of banks, airlines, television companies, supermarkets, and other organizations. The tool creates a bootable USB drive with Windows PE environment. It automatically accesses the system…
Global Windows Crash with CrowdStrike protection systems installed
Global Windows Crash firstly- how to repair – from Russian experts!!! 1. Restart Windows and boot into Safe mode 2. Open a command prompt 3. Go to C:\Windows\System32\drivers\CrowdStrike 4. Locate the file matching “C-00000291* sys”, and delete it. [or Rename the file CSAgent.sys to something else, eg. donotcrash.sys] 5. Continue normal startup )))))))))) no need…
How to prevent lateral movement to Entra ID when your Active Directory has fallen
Hey Hey, such a long read, but please take a time for review. At the moment, the biggest threat to an Entra ID tenant in the vast majority of environments comes from the connected Active Directory. Attackers are (currently) focusing heavily on on-prem environments, as these are generally much more difficult to protect and are…
Microsoft Opens Beta Channel for Windows 10 Insiders
At the end of last year, Microsoft announced changes to its Windows 10 strategy, promising to add new features and improvements as needed. To actively develop innovations, the company has reopened the Beta channel for Windows Insiders, allowing them to test upcoming features before they are released to all users. Windows Insiders who want to…
Cumulative updates for Windows 11 and Windows 10 have been released in May
Microsoft has released monthly cumulative updates for all supported operating systems. These updates do not include any new features, but they are designed to fix errors and eliminate vulnerabilities. The updates are available through the Windows Update Center. For more detailed information about the changes in each update, please visit the official website. You can…
Microsoft is investigating issues with VPNs and the latest Windows 11 update.
Microsoft has acknowledged reports of VPN connection issues after installing the April 2024 Windows 11 update, according to a report from Reddit user Flo-TPG. The KB5036893 security update, released on April 9 for all supported Windows 11 versions, has caused some users to experience issues with VPN connections that use TPM-backed certificates. According to Microsoft,…
Attackers exploiting new critical OpenMetadata vulnerabilities on Kubernetes clusters
Attackers are constantly looking for new vulnerabilities to exploit in Kubernetes environments. Recently, Microsoft uncovered an attack that takes advantage of new critical vulnerabilities in OpenMetadata to access Kubernetes workloads and use them for cryptocurrency mining. OpenMetadata is an open-source platform that helps manage metadata across different data sources. It acts as a central repository…