Microsoft Issues Out of Band Patch for Flaw Allowing Lateral Movement Ransomware Attacks


In order to address a vulnerability that could allow malicious actors to move freely around the network of a targeted organisation, Microsoft this week released an out-of-band security upgrade for its Endpoint Configuration Manager product.

Microsoft has categorised the issue as a medium-severity spoofing vulnerability and has classified it as CVE-2022-37972. The bug was reported by Brandon Colley of Trimarc Security, according to the tech giant. Read More…