Alert for Microsoft users! Govt warns of these vulnerabilities. Details here
CERT-In issues a critical security advisory on Microsoft vulnerabilities. Users should update software, use strong passwords, install antivirus software, and be cautious with links and emails.
Sumit Rawat
The Indian Computer Emergency Response Team (CERT-In), under the Ministry of Electronics and Information Technology, has issued a critical security advisory warning of multiple vulnerabilities affecting individuals and organizations.
CERT-In highlights numerous vulnerabilities across Microsoft products, including Windows, Office, Dynamics, Bing, Developer tools, Azure, and various applications. These vulnerabilities pose significant risks such as unauthorized access to sensitive data, remote code execution, bypassing security controls, spoofing, tampering attacks, and denial-of-service conditions.
In a statement, CERT-In warned, "Multiple vulnerabilities have been reported in Microsoft products, which could allow an attacker to gain elevated privileges, obtain sensitive information, conduct remote code execution attacks, bypass security restrictions, conduct spoofing attacks, conduct tampering attacks, or cause denial of service conditions."
Exploitation of these vulnerabilities can lead to security breaches resulting in financial losses, data theft, and unauthorized access to sensitive information. To mitigate these risks, CERT-In advises users to regularly update software, including systems, applications, and security software. Security updates often contain patches addressing such vulnerabilities.
Users are also encouraged to maintain robust passwords for sensitive accounts and install antivirus software to combat malicious viruses. Additionally, caution is advised when interacting with links and emails to prevent unauthorized access by malicious actors.
In related developments, a newly discovered zero-day vulnerability in Google Chrome has raised concerns among users and cybersecurity experts. CERT-In has issued a high-severity warning regarding these fresh security vulnerabilities.
The latest advisory from CERT-In indicates that the vulnerabilities in Google Chrome could allow a remote attacker to compromise a user's system. These issues include a use-after-free flaw in the visuals and angle components and a heap buffer overflow in WebAudio. Users are advised to update their browsers promptly to mitigate these risks.
