Microsoft releases new Windows XP security patches, warns of state-sponsored cyberattacks

[CrAKeN]

 

Microsoft issued a “highly unusual” patch for Windows XP last month to help prevent the spread of the massive WannaCry malware. At least 75,000 computers in 99 countries were affected by the malware which encrypts a computer and demands a $300 ransom before unlocking it. Microsoft stopped supporting Windows XP in April 2014, but the software giant is now taking the unprecedented move of including it in the company’s Patch Tuesday round of security updates today.

 

“In reviewing the updates for this month, some vulnerabilities were identified that pose elevated risk of cyberattacks by government organizations, sometimes referred to as nation-state actors, or other copycat organizations,” says Adrienne Hall, general manager of crisis management at Microsoft. “To address this risk, today we are providing additional security updates along with our regular Update Tuesday service. These security updates are being made available to all customers, including those using older versions of Windows.”

 

An unprecedented move

 

Microsoft says it is releasing updates for Windows XP, Windows Vista, and all other more recent unsupported and supported versions of Windows due to an “elevated risk” of attacks that are similar to the WannaCry malware. The patches will be made available on Microsoft’s Download Center or Windows Update. Microsoft says this move to release security updates for platforms not in extended support “should not be viewed as a departure from our standard servicing policies,” and that this is an exception based on intelligence that led it to believe government organizations may use these new vulnerabilities to attack Windows systems.

 

Microsoft isn’t explaining who or what has tipped the company off to these potential new attacks. March’s security patches included fixes for hacking tools that were leaked from the NSA, and Microsoft didn’t acknowledge the source of the security flaw reports then either. There has been speculation that The Shadow Brokers, a group that leaked the NSA exploits, tipped Microsoft in advance to the previous exploits. Microsoft also mysteriously delayed its Patch Tuesday release in February by a month in an unprecedented move, blaming a "last minute issue".

 

If you're still running Windows XP then these new patches should be installed immediately, even though Windows XP wasn't as badly affected by the first WannaCry attacks. While almost all WannaCry victims were running Windows 7 without the latest security updates, it's not clear if these new attacks might target Windows XP more aggressively this time around.

 

Source

[steven36]

 

Quote

 

Microsoft releases new updates citing 'elevated cyber attack risk'

 

In wake of the increasing risks of cyber attack across the globe, Microsoft has released several critical security updates to provide protection against widespread hacking, citing an "elevated risk of cyber attacks."

 

"In reviewing the updates for this month, some vulnerabilities were identified that pose elevated risk of cyber attacks by government organizations, sometimes referred to as nation-state actors or other copycat organizations," reported CNN quoting General Manager of Microsoft's Cyber Defense Operations Center, Adrienne Hall. These programming could even help to prevent another global ransomware outbreak like WannaCry.

 

It is yet unclear whether Microsoft (MSFT, Tech30) has been warned of another cyber attack similar to that of WannaCry. A Microsoft spokesperson said that the security teams are actively monitoring cyber threats, and the decision to release the updates is "an exception based on the current threat landscape and the potential impact to customers and their businesses." The recent security update which was released on Tuesday includes patches to its Windows XP, Windows Vista, and Server 2003 products, which are unsupported but still widely-used.

 

The updates will be automatically available for Windows 10, Windows 8.1, Windows 7 and Windows Server releases after 2008 and the patches have to be manually installed. Apart from this, the Microsoft suggests customers enable Windows Update if they haven't already.

 

Earlier, the report surfaced that the hackers working under the name of WannaCry malware, the name that shook 150 countries by hacking their major websites, are likely to originate from the southern mainland, Hong Kong, Taiwan or Singapore. As per forensic linguistic analysis on the malware, it was revealed that it was written by native Chinese speaking people, according to the South China Morning Post.

 

However, earlier reports had suggested hackers being from North Korea. The WannaCry malware hacked crucial data and in return asked a ransom for its restoration. As per reports, the hackers drafted the note in Chinese and then based on it, produced an English version. Later, it was converted into other languages with the help of Google's Translate feature.

 

The report further says that the typo in the note, bang zhu (which means 'help) signifies that the note was originally written using a Chinese-language input system instead of being translated from some other language. The WannaCry ransomware attack hit more than 200,000 computers in 150 countries, crippling hospitals, governments and businesses.

 

http://www.dnaindia.com/technology/report-microsoft-releases-new-updates-citing-elevated-cyber-attack-risk-2471977