National Public Data, Microsoft 365 E-Mail, Massive List of Microsoft Vulnerabilities
Risk 1: Medium
Issue: Rumors have been circulating about a large data breach from National Public Data.
We had previously reported the start of this breach in April. This is an extension of that story.
However, there is a lot to unpack and unfold here. So there will be a special update this weekend to include:
Full details to keep you informed
Video explaining in plain English what happened
Flyer and social media posts you can share with your clients
Resolution: Coming this weekend.
Risk 2: Low
Issue: There is a known issue with Microsoft 365 when accessing your e-mail through the Outlook application where the application will continue to crash, even when in Safe Mode. E-mail content is not compromised, just access to it.
Resolution: The issue has been linked to server-side e-mail policies and rules. If the problem persists, the easiest way to correct is to log in through web access and remove the policies. Then, once you are able to access the Outlook application again, you can re-add the rules.
Risk 3: High
Issue: A zero-day vulnerability was located on Windows systems with an integrated touch-screen that allows users to bypass login and MFA access. The vulnerability was linked to web-enabled content on the login/lock screen.
A second vulnerability was located connected to Windows Defender. The July update caused multiple Windows Defender features to stop functioning.
Yet another Microsoft vulnerability was exposed connected to BitLocker, the drive encryption tool. This issue forced the tool to reboot
Resolution: Microsoft has released an official patch to correct these issues. Please perform a system update to avoid this vulnerability. Ensure that the update is effective by August 14, 2024 at least.
In total, this update includes over 35 critical system updates.
Financial Guardians is a proud member of InCite, the recently launched online community exclusively for tax professionals, bookkeepers, and accountants.
