Visit our FacebookVisit our InstagramVisit our TwitterVisit our LinkedInVisit our YouTube channel
Book a MeetingClient Area
01455 247 830
07897 001 247
REMOTE SUPPORT
Visit our FacebookVisit our InstagramVisit our TwitterVisit our LinkedIn
Book a MeetingClient Area
Back to news

Microsoft Urgent Advisory

Microsoft have released an urgent advisory to install all of the latest security updates to Windows 10, Windows Server 2016 and Windows Server 2019, due to a vulnerability that could allow a spoofed secure connection to a website to appear genuine.

Microsoft have said:

A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.

An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source. The user would have no way of knowing the file was malicious, because the digital signature would appear to be from a trusted provider.

A successful exploit could also allow the attacker to conduct man-in-the-middle attacks and decrypt confidential information on user connections to the affected software.

The security update addresses the vulnerability by ensuring that Windows CryptoAPI completely validates ECC certificates.

Please ensure you have installed all Windows updates on all business and personal devices.

To remove the headache of manual updates and to implement automatic management of your Windows updates please speak to your account manager to see how IT3000 can help.

For more information call us on 01455 247 830 or 01202 830 830
or email your account manager.

Recent Articles

 Safeguard Your Business: Stay Vigilant Against Phishing Threats

In the realm of cyberspace, the threat of phishing emails and email hacks looms large, becoming ever more sophisticated by the day. Recently, we've observed a surge in deceptive emails, particularly those requesting urgent payments to unfamiliar accounts. At IT3000, we stand by our ethos 'making IT better', and part of that promise is to […]

Read More
What IT Risks Does My Business Face?

Understanding the Digital Threat Landscape: Risks Every Business Should Be Aware Of In our increasingly digital age, businesses are transforming rapidly to adopt modern technologies. While these advancements promise efficiency and innovation, they also introduce a host of IT risks. From startups to multinational corporations, no business is entirely immune. Let's delve into the most […]

Read More
Stay Scam Safe: Supporting the BBC’s Special Week on Cybersecurity

In today's digital age, where everything is interconnected and online, the threat of scams and cyber-attacks has never been higher. With the exponential increase in online transactions, information sharing, and reliance on digital platforms, the potential for scams to harm both individuals and businesses has also multiplied. Recognising the need for awareness and action, the […]

Read More

IT3000 Limited

At IT3000 we are an ISO 9001 and ISO 27001 accredited Midlands and South West based IT support/ managed services provider who specialise in providing IT support and services to organisations nationwide. Our extensive help desk team, as well as offices in Leicestershire and Dorset allow us to work with a wide variety of companies across the UK.
Join Our Mailing List
Copyright © 2023 IT3000 Limited
IT3000 Limited, The Barn, Bridge Farm, Holt Lane, Ashby Magna, Lutterworth, Leicestershire, LE17 5NJ
envelopephone-handsetsmartphone
linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram