fb
Action1 5 Category: Blog

Blog

66 Vulnerabilities Fixed in Microsoft’s September 2021 Patch Tuesday

66 Vulnerabilities Fixed in Microsoft’s September 2021 Patch Tuesday

It’s the second Tuesday of the month again — time to check out the latest patch batch. Today, Microsoft released fixes for a total of 66 vulnerabilities, three of which were deemed Critical, one rated Moderate, and the rest classified as Important. Earlier this month, Microsoft released 20 security updates for Microsoft Edge (Chromium-based), bringing the total number of CVEs fixed in September to 86.

read more
Microsoft Patch Tuesday Survival Guide

Microsoft Patch Tuesday Survival Guide

This time of the month… The predictable Windows Security Patch Tuesday schedule allows system administrators to stay prepared with their patch implementation plans.
Learn how to be ready for Microsoft Patch Tuesday. In this article we have compiled our tips for stress-free management of important Windows updates and timely deployment of Windows critical patches.

read more
5-Step Vulnerability Remediation Process

5-Step Vulnerability Remediation Process

Vulnerability remediation management is a vital part of corporate cybersecurity. Understand security vulnerability management and learn strategies through this guide to the vulnerability remediation process. There is no such thing as a perfectly secure software application. In one way or another, they all have security vulnerabilities waiting to be discovered. In fact, new software vulnerabilities or security bugs are found nearly every day, even in mainstream software products and services. In a recent study, 42 percent of the surveyed cybersecurity and IT professionals said security risk management is more challenging today due to an increasing number of software vulnerabilities.

read more
Top 7 Managed Services Provider Best Practices to Promote Business Growth

Top 7 Managed Services Provider Best Practices to Promote Business Growth

The demand for managed IT services is soaring as more and more organizations continue to adopt new digital enterprise solutions, such as the cloud, big data, blockchain, IoT, and automation. Managed IT remains the fastest and most cost-efficient way for businesses to implement and utilize these emerging technologies.
How can MSP vendors streamline workflows with the best MSP tools to thrive and stand out in the competitive managed IT industry? Read on in Action1 Blog to learn the best strategies for managed service providers.

read more
July 2021: Microsoft Patch Tuesday Review

July 2021: Microsoft Patch Tuesday Review

Microsoft released fixes for 117 flaws in this July’s Patch Tuesday. Of the 117 vulnerabilities, 13 were marked as Critical, 103 Important, and 1 Moderate; nine were zero-day vulnerabilities, four of which were actively exploited before the patch release. The bugs included the usual blend of RCE, DOS, information disclosure, EoP, spoofing, and security bypass vulnerabilities across Microsoft’s suite of products. The volume of the latest patch release exceeds the combined totals from the last two months, and it’s the second time this year that Microsoft has packed more than 100 fixes in one Patch Tuesday batch.

read more
Microsoft Fixes 50 Vulnerabilities on Patch Tuesday, June 2021

Microsoft Fixes 50 Vulnerabilities on Patch Tuesday, June 2021

Keeping with its Patch Tuesday tradition, Microsoft has just released 50 security patches for a host of software products and services, including .NET Core and Visual Studio, Microsoft Office, Windows Defender, Windows Codecs Library, 3D Viewer, and Windows HTML Platform. Today’s release included patches for RCE, Elevation of Privilege, DoS, Spoofing, Information Disclosure, and Security Feature Bypass vulnerabilities.

In terms of severity, 45 of the 50 CVEs were marked “Important” and five “Critical.” Among these were seven zero-day vulnerabilities, six of which had already been exploited in the wild. Eight of the security flaws fixed today were reported by the Zero Day Initiative (ZDI). Additionally, Microsoft acknowledged reports from Google Project Zero, Google’s Threat Analysis Group, Check Point Research, Kaspersky, and FireEye, among other contributors.

Here’s an overview of the seven zero-day vulnerabilities and other noteworthy flaws fixed in June’s patch rollout.

read more
Microsoft Patch Tuesday, May 2021 Review

Microsoft Patch Tuesday, May 2021 Review

Today, the second Tuesday of May, is Microsoft’s Patch Tuesday. This month’s patch release includes fixes for 55 CVEs – 50 classified as Important, one moderate, and four marked as critical. Microsoft also patched three zero-day vulnerabilities that were publicly disclosed but not yet exploited at the time of this release. The 55 fixes touch on various Microsoft products and services, including Exchange Server, Skype for Business, Visual Studio, MS Office, .NET Core, SharePoint Server, and Hyper-V. Along with May’s patch cycle, Microsoft also rolled out cumulative updates for all supported versions of Windows. The freshly updated Windows 10 OS builds 19041.895 and 19042.895 mostly feature enhanced security for Windows System Core Components, browsers, and other basic functions, plus a couple of new peripheral drivers and UI elements. Let’s get back to the security flaws addressed in this month’s patch dump.

read more
The Admin’s IT Guide to Remote Endpoint Management

The Admin’s IT Guide to Remote Endpoint Management

More people than ever are working from home, and IT teams are being pushed to the limit trying to maintain both user productivity and corporate security. They need to be able to keep endpoints properly maintained, monitor network activity, troubleshoot issues promptly, and more — all while remote.
The job can feel overwhelming. But it doesn’t have to be. To help, we’ve drawn up a list of the essential best practices managing a remote workforce, along with tips for implementing them effectively.

read more
Microsoft Patch Tuesday, March 2021  Review

Microsoft Patch Tuesday, March 2021 Review

Microsoft Patch Tuesday started early this month with an out-of-band patch release on March 2. This week’s batch fixes a total of 89 CVEs; among these are the seven out-of-band fixes from last week, ten ‘critical’ fixes, and 72 marked as ‘important.’ Two of the patches address separate zero-day vulnerabilities, one of which had already been exploited in the wild. This month’s patches cover a wide range of Microsoft products and services, including Azure, Office products, and Windows internet browsers.

read more
WSUS Patch Management Alternatives

WSUS Patch Management Alternatives

The corporate world has been through big changes over recent years, with cloud deployments and remote working emerging as the new normal in many industry sectors. How people communicate, collaborate, and create value is changing before our eyes, with existing technology solutions not always relevant to business interests. Windows Server Update Services (WSUS Patch Management) is an example of a legacy solution that continues to be eclipsed by more advanced and efficient services. There are more automated patch management tools alternative to WSUS, some of which are much better placed to meet the new agile and flexible workforce’s demands.

read more
Tackling Microsoft Defender Remote Code Execution Vulnerability

Tackling Microsoft Defender Remote Code Execution Vulnerability

Microsoft rolled out its monthly set of security updates. The security patches bundle included fixes for 83 vulnerabilities on Windows operating system, enterprise servers, development tools, and various cloud products and services. Among these patches, ten were described as critical, and one of the most important patches was the fix for Microsoft Defender Remote Code Execution Vulnerability – a zero-day vulnerability that Microsoft said was exploited in the wild before the patch was released.

read more
5 Reasons to Leverage Remote Patch Management Software

5 Reasons to Leverage Remote Patch Management Software

There are many pain points for your organization’s IT department during the pandemic with the shift to a remote workforce. These may include hassles supporting working-from-home employees, particularly maintaining the software updates to protect corporate endpoints from vulnerabilities. One of the essential activities for preventing security breaches still is security patching.

read more
Choosing Remote Desktop Access Tools for IT Management and MSP Business

Choosing Remote Desktop Access Tools for IT Management and MSP Business

IT professionals can no longer swing by someone’s desk and grab their desktop or pick up a laptop to work on an issue. Due to public health concerns and social distancing, remotely triaging and resolving issues is the new normal, and IT workers have to consider how to install monitoring software remotely. The shift towards working-from-home has spiked the demand for endpoint remote management tools among organizations. Most businesses simply have not been prepared to face a sudden mass transition to remote operations and social distancing. However, the benefits of utilizing cloud-based remote monitoring and management tools have been known for as long as remote work has been practiced.

read more
What is an Endpoint Protection Platform (EPP)

What is an Endpoint Protection Platform (EPP)

With businesses making use of the cloud technologies, and employees having the ability to access business environments using mobile devices and other device types, today’s network perimeter has shifted to the endpoint. An Endpoint Protection Platform (EPP) provides a holistic approach to cybersecurity that takes into consideration today’s shift to the cloud and end user device-centric productivity. What is an endpoint protection platform? How does it compare with traditional security solutions?

read more
Zerologon Windows Vulnerability: What Is It and How to Tackle It?

Zerologon Windows Vulnerability: What Is It and How to Tackle It?

On top of dealing with a global pandemic and the challenges that working from home poses for IT administrators, the past few months have seen quite a few alarming vulnerabilities. One of the most critical was announced in August of this year and dubbed the Zerologon vulnerability. What is it and how can organizations ensure the remote workforce is patched and safe from Zerologon?

read more
cloud patch management solutions action1

MSP Solution

Centralize endpoint management and boost efficiency of IT service delivery.

automated server patch management action compliance

Patch Management

Identify and deploy missing OS and third-party software updates.

api integrations icon action1 rmm

Server Patching

Execute remote patch deployment for Windows servers via Cloud.

cloud software deployment tools windows

Software Deployment

Distribute software and updates across managed endpoints.

software distribution tools software inventory action1

IT Asset Inventory

Keep a detailed inventory and manage hardware and software assets.

cloud patch management solutions action1

Software Asset Management

Gain comprehensive insight into installed software and manage apps.

web client remote desktop

Remote Desktop

Support users via seamless remote desktop connection.

web based rdp client

Unattended Access

Provide administrative support and manage remote devices.

computer inventory tool for compliance

Reports and Alerts

Conduct endpoint security audits with comprehensive reporting.

automated patch management action1

Endpoint Management

Run PowerShell, custom scripts, reboot computers and restart services.

API integrations action1

RESTful API

Integrate Action1 RMM to your IT ecosystem.