Android Streaming Devices, Microsoft 365 E-Mail, Massive List of Microsoft Vulnerabilities, Wix
Risk 1: Low
Issue: New malware (Vo1d) has spread to nearly two million Android-based streaming devices. These are small devices (similar to an AppleTV) that broadcast content. If breached, the device could be remotely accessed and controlled - including any cameras and microphones. This *could* also impact Android-based TVs (although not confirmed as of yet). At this moment, Fire-based devices are not known to be exploited by this threat.
This is particularly dangerous if you have a device near your office or workspace.
Resolution: Watch for a patch/update. One is expected this weekend. In the meantime, please be extra caution with using these devices, especially if they are near your workspace.
Risk 2: Low
Issue: There is a known issue with Microsoft 365 when accessing your e-mail through the Outlook application where the application will continue to crash, even when in Safe Mode. E-mail content is not compromised, just access to it.
Resolution: The issue has been linked to server-side e-mail policies and rules. If the problem persists, the easiest way to correct is to log in through web access and remove the policies. Then, once you are able to access the Outlook application again, you can re-add the rules.
Risk 3: High
Issue: A zero-day vulnerability was located on Windows systems with an integrated touch-screen that allows users to bypass login and MFA access. The vulnerability was linked to web-enabled content on the login/lock screen.
A second vulnerability was located connected to Windows Defender. The July update caused multiple Windows Defender features to stop functioning.
Yet another Microsoft vulnerability was exposed connected to BitLocker, the drive encryption tool. This issue forced the tool to reboot
Resolution: Microsoft has released an official patch to correct these issues. Please perform a system update to avoid this vulnerability.
In total, this update includes over 68 critical system updates.
Risk 4: Low
Issue: Wix, the popular website creator/platform, began blocked Russian users and access from Russia. Be advised if you have any clients in this country or travelling in this country.
This is an update - no action is needed..
Resolution: Microsoft has released an official patch to correct these issues. Please perform a system update to avoid this vulnerability.
In total, this update includes over 68 critical system updates.
Financial Guardians is a proud member of InCite, the recently launched online community exclusively for tax professionals, bookkeepers, and accountants.
