Microsoft Patches Current Exploited Flaw Prioritized by Organizat

Trending News

FTC Approves Non-Compete Ban

Final Rule Raises Salary Threshold to $58,656 for Employee Overtime Exemptions

EEOC Final Rule Implementing the Pregnant Workers Fairness Act

Trending in Telehealth: April 9 – April 15, 2024

Healthcare Preview for the Week of: April 22, 2024 [Podcast]

Pregnant Workers Fairness Act Final Regulations Released

It’s the Final Countdown – The Final PWFA Regs Are Here

Corporate Transparency Act – Continued Developments

Healthcare Preview for the Week of: April 15, 2024 [Podcast]

SCOTUS Declines to Review New York City’s Rent Stabilization Law

Linn F. Freedman

Email

401-709-3353

Bio and Articles

Patch Tuesday Release Includes Fix for Actively-Exploited Flaw

by: Linn F. Freedman of Robinson & Cole LLP - Data Privacy + Security Insider

Thursday, April 14, 2022

Print Mail Download

i

Microsoft released its monthly patches this week to fix 128 vulnerabilities, including 10 rated as critical, 115 as important, and three flagged as moderately severe. One of the vulnerabilities (CVE-2022-24521 Windows Common Log File System Driver Elevations of Privilege) is being actively exploited by APT groups according to the National Security Agency, so addressing this flaw is a priority for organizations.

According to Microsoft, “Microsoft is aware of an instance of this vulnerability being exploited. As such, customers who have reviewed the security update and determined its applicability with their environment should treat this with the highest priority.”

It is challenging to address hundreds of patches released by manufacturers. Follow the guidance provided by Microsoft and other manufacturers and prioritize those flaws that are known to be actively exploited.

Current Legal Analysis

Finally Final — The DOL Issues Its Long-Expected Final Rule Raising the FLSA Overtime Exemption Salary Thresholds

by: Jason N. W. Plowman , Matthew P.F. Linnabary

EPA Designates PFOA and PFOS as CERCLA Hazardous Substances, Releases CERCLA Enforcement Discretion Policy

by: Lynn L. Bergeson , Lisa M. Campbell

LEGAL SPIN: SoulCycle Sued In TCPA Class Action

by: Tori Guidry

"Please Pay No Attention to the Microphone:” DOJ Announces New Program Offering Protections to Criminal Whistleblowers

by: Kurt R. Erskine , Nicole K. Nielly

DOJ Final Rule on Website Accessibility for State and Local Governments Portends Significant Changes for Private-Sector Websites

by: David Raizman

More from Robinson & Cole LLP

The Department of Education Releases Significant Revisions to Title IX Regulations

by: Kathleen E. Dion , Seth B. Orkand

Privacy Tip #394 – Colorado Amends Privacy Law to Include Neurodata

by: Linn F. Freedman

New Threat: Scattered Spider International Coalition of Hackers

by: Linn F. Freedman

Joint Guidance Published by Five Eyes on Deploying AI Systems Securely

by: Linn F. Freedman

U.S. Government Intervenes in Case Alleging Unauthorized Disclosure of CUI

by: Data Privacy & Cybersecurity Robinson Cole

DoorDash Settles with California Attorney General for Alleged Violations of the CCPA

by: Kathryn M. Rattigan

The State of AI Governance and Diversity: Takeaways from the AI Index Report

by: Blair V. Robinson

Weight Loss, Miracle Medications & the Workplace

by: Abby M. Warren

Additional States Implement Notice Requirements for Healthcare Transactions

by: Leslie J. Levinson , Danielle H. Tangorre

Privacy Tip #393 – Phishing, Smishing, Vishing and Qrishing Schemes Continue to Dupe Users

by: Linn F. Freedman

Upcoming Legal Education Events

Jun

4

2024

FinTech and Securities Trading Platforms

May

15

2024

Capital Connect: Finance & Funding in Life Sciences

May

14

2024

Harmonizing TSCA Consent Orders with OSHA HCS 2012

May

8

2024

TSCA 30/30 Webinar: May 8, 2024

Print