With the release of the monthly “Patch Tuesday” update for security patches to Windows customers, Microsoft confirms that one zero-day security flaw is being attacked.
Everyone on Windows as well as Windows Server users are being advised to update as fast as is possible following Microsoft announces the existence of CVE-2022-34713 also called DogWalk is actively exploited by hackers.
How can I identify this vulnerability? DogWalk vulnerability?
The remote code execution vulnerability is found within Microsoft’s Windows Support Diagnostic Tool (MSDT) and could lead to security breaches to the system. This isn’t the first time MSDT is targeted by cybercriminals , nor is it actually, it’s the first time that we’ve come across DogWalk. As I reported back on June 8th “It’s only a matter time, as I think when DogWalk exploits are being documented out in the open.” This moment has come.
New Gmail Attack Bypasses Passwords And 2FA To Read All EmailBy Davey Winder
It’s quite remarkable that the vulnerability was first reported in January of this year. When it first was reported that Microsoft did not see it as to be a security risk.
The vulnerability could be exploited by attackers using the techniques of social engineering or phishing to trick users into open a corrupted document file, or accessing an untrusted website in the same way.
CISA issues a mandatory update alert for U.S. federal agencies
This vulnerability affects every user of the compatible variants that are supported by Windows as well as Windows Server. This is because the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added DogWalk to the list of Known exploited Vulnerabilities list and has ordered the federal government agencies to address the vulnerability before the close of the month.
I would suggest to everyone to follow suit but more quickly by applying the Patch Update for Tuesday as quickly as it is feasible.
Gmail Hackers Target Google Accounts-Here’s How To Stop ThemBy Davey Winder
Although DogWalk is the sole zero-day being addressed this update addresses all 121 vulnerabilities which include 17 vulnerabilities that have been being rated as critical.
Dustin Childs, from Trend Micro’s Zero Day Initiative, says “the amount of fixes that were released this month is significantly more than what’s typically expected for the August release. It’s nearly triple the volume of the previous August release and the second-largest release of in the last year.”
You can find the complete schedule of Windows security updates for August in the guide to update issued through the Microsoft Security Response Center.
Keep up-to-date with us on social media platforms for an instant updates. Click here to join us on Twitter and Facebook
