Krebs on Security: Adobe, Microsoft Patch Critical Cracks

Krebs on Security: Adobe, Microsoft Patch Critical Cracks. “It’s Nov. 14 — the second Tuesday of the month (a.k.a. “Patch Tuesday) — and Adobe and Microsoft have issued gobs of security updates for their software. Microsoft’s 11 patch bundles fix more than four-dozen security holes in various Windows versions and Office products — including at least four serious flaws that were publicly disclosed prior to today. Meanwhile, Adobe’s got security updates available for a slew of titles, including Flash Player, Photoshop, Reader and Shockwave.”

Ars Technica: The last official way to get a free Windows 10 upgrade is ending soon

Ars Technica: The last official way to get a free Windows 10 upgrade is ending soon. “For the first year of its availability, Microsoft offered a free upgrade to Windows 10 for users of non-enterprise versions of Windows 7 and 8. For most people, that scheme ended last July, but one group of Windows users continued to be eligible for a free upgrade even after that cut-off point: those using assistive technology such as screen readers, Braille screens, or other usability aids.”

Reuters: Microsoft responded quietly after detecting secret database hack in 2013

Reuters: Microsoft responded quietly after detecting secret database hack in 2013. “Microsoft Corp’s secret internal database for tracking bugs in its own software was broken into by a highly sophisticated hacking group more than four years ago, according to five former employees, in only the second known breach of such a corporate database.”

Ars Technica: Dutch privacy regulator says Windows 10 breaks the law

Ars Technica: Dutch privacy regulator says Windows 10 breaks the law. “The lack of clear information about what Microsoft does with the data that Windows 10 collects prevents consumers from giving their informed consent, says the Dutch Data Protection Authority (DPA). As such, the regulator says that the operating system is breaking the law.”

It’s Patch Blues-day: Bad October Windows updates trigger BSODs (The Register)

The Register: It’s Patch Blues-day: Bad October Windows updates trigger BSODs . “Microsoft’s October batch of security patches and bug fixes caused some corporate PCs to suffer blue-screen-of-death crashes when starting up this week. The Redmond software giant has fielded multiple complaints on its support forum from system administrators, who said the KB4041676 and 4041691 updates are making their machines go titsup.”

Krebs on Security: Microsoft’s October Patch Batch Fixes 62 Flaws

Krebs on Security: Microsoft’s October Patch Batch Fixes 62 Flaws. “Microsoft on Tuesday released software updates to fix at least 62 security vulnerabilities in Windows, Office and other software. Two of those flaws were detailed publicly before yesterday’s patches were released, and one of them is already being exploited in active attacks, so attackers already have a head start.”

The Register: Microsoft silently fixes security holes in Windows 10 – dumps Win 7, 8 out in the cold

The Register: Microsoft silently fixes security holes in Windows 10 – dumps Win 7, 8 out in the cold. “Microsoft is silently patching security bugs in Windows 10, and not immediately rolling out the same updates to Windows 7 and 8, potentially leaving hundreds of millions of computers at risk of attack. Flaws and other programming blunders that are exploitable by hackers and malware are being quietly cleaned up and fixed in the big Windows 10 releases – such as the Anniversary Update and the Creator’s Update. But this vital repair work is only slowly, if at all, filtering back down to Windows 7 and Windows 8 in the form of monthly software updates.”