It is that time again – among the fixes and patches from Microsoft, for July 2022 is one addressing CVE-2022-22047, Windows Elevation of Privilege Vulnerability – according to Microsoft a zero-day flaw that is being exploited by threat actors.
For more details see Bleeping Computer’s excellent round-up of Patch Tuesday:
Microsoft July 2022 Patch Tuesday fixes exploited zero-day, 84 flaws (bleepingcomputer.com)
My advice: Either you or your IT support need to check whether these issues impact your systems. You need to have a master document that details your systems, hardware, software, online, networks, back-ups, suppliers etc – so when cyber security (or operational) issues arise you and your support teams can quickly check if you are affected. From there you can take fast, effective action.
However do you know whether the rest of your team have run the updates, or are they avoiding the required reboot? Have a look at this from Octagon Technology – with this tool you will have the reassurance that all cyber security patches and updates across your organisation will be applied. It can also force a reboot for those really stubborn employees and protect you from an inside transferring your valuable data to a USB memory stick and walking out the door with it!
Further Reading
Microsoft Releases July 2022 Security Updates | CISA
Please Note:
I am on leave so the news this week is “in brief”. You can still contact me via the contact page and Octagon Technology.
