Palo Alto’s Unit 42 details impacts of vulnerability in Microsoft operating systems identified by CISA

The Palo Alto Networks research team is providing details on an actively exploited vulnerability affecting a Microsoft operating system update service used by IT administrators, expanding on a recent alert from the Cybersecurity and Infrastructure Security Agency.

“The combination of a remotely exploitable, unauthenticated [remote code execution] in a core infrastructure service, coupled with observed active exploitation in the wild, represents a severe and time-sensitive risk. Within hours of the emergency update, Unit 42 and other security researchers observed active...