{"id":5551,"date":"2025-08-13T02:35:55","date_gmt":"2025-08-13T02:35:55","guid":{"rendered":"https:\/\/techtrendfeed.com\/?p=5551"},"modified":"2025-08-13T02:35:55","modified_gmt":"2025-08-13T02:35:55","slug":"microsoft-patch-tuesday-august-2025-version-krebs-on-safety","status":"publish","type":"post","link":"https:\/\/techtrendfeed.com\/?p=5551","title":{"rendered":"Microsoft Patch Tuesday, August 2025 Version \u2013 Krebs on Safety"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div>\n<p><strong>Microsoft<\/strong> at present launched updates to repair greater than 100 safety flaws in its <strong>Home windows<\/strong> working techniques and different software program. At the very least 13 of the bugs obtained Microsoft\u2019s most-dire \u201cimportant\u201d score, which means they may very well be abused by malware or malcontents to achieve distant entry to a Home windows system with little or no assist from customers.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-56287\" src=\"https:\/\/krebsonsecurity.com\/wp-content\/uploads\/2021\/07\/windupate.png\" alt=\"\" width=\"750\" height=\"528\" srcset=\"https:\/\/krebsonsecurity.com\/wp-content\/uploads\/2021\/07\/windupate.png 841w, https:\/\/krebsonsecurity.com\/wp-content\/uploads\/2021\/07\/windupate-768x541.png 768w, https:\/\/krebsonsecurity.com\/wp-content\/uploads\/2021\/07\/windupate-782x550.png 782w, https:\/\/krebsonsecurity.com\/wp-content\/uploads\/2021\/07\/windupate-100x70.png 100w\" sizes=\"auto, (max-width: 750px) 100vw, 750px\"\/><\/p>\n<p>August\u2019s patch batch from Redmond contains an replace for <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2025-53786\" target=\"_blank\" rel=\"noopener\">CVE-2025-53786<\/a>, a vulnerability that permits an attacker to pivot from a compromised <strong>Microsoft Trade Server<\/strong> immediately into a company\u2019s cloud setting, doubtlessly gaining management over <strong>Trade On-line<\/strong> and different linked <strong>Microsoft Workplace 365<\/strong> providers. Microsoft first warned about this bug on Aug. 6, saying it impacts <strong>Trade Server 2016<\/strong> and <strong>Trade Server 2019<\/strong>, in addition to its flagship <strong>Trade Server Subscription Version<\/strong>.<\/p>\n<p><strong>Ben McCarthy<\/strong>, lead cyber safety engineer at <strong>Immersive<\/strong>, mentioned a tough search reveals roughly 29,000 Trade servers publicly going through on the web which are susceptible to this difficulty, with lots of them prone to have even older vulnerabilities.<\/p>\n<p>McCarthy mentioned the repair for CVE-2025-53786 requires extra than simply putting in a patch, equivalent to following Microsoft\u2019s guide directions for making a devoted service to supervise and lock down the hybrid connection.<\/p>\n<p>\u201cIn impact, this vulnerability turns a big on-premise Trade breach right into a full-blown, difficult-to-detect cloud compromise with successfully residing off the land strategies that are at all times tougher to detect for defensive groups,\u201d McCarthy mentioned.<\/p>\n<p><a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2025-53779\" target=\"_blank\" rel=\"noopener\">CVE-2025-53779<\/a> is a weak point within the <strong>Home windows Kerberos<\/strong> authentication system that permits an unauthenticated attacker to achieve area administrator privileges. Microsoft credit the invention of the flaw to Akamai researcher <strong>Yuval Gordon<\/strong>, who dubbed it \u201c<strong>BadSuccessor<\/strong>\u201d in <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.akamai.com\/blog\/security-research\/abusing-dmsa-for-privilege-escalation-in-active-directory\" target=\"_blank\" rel=\"noopener\">a Could 2025 weblog publish<\/a>. The assault exploits a weak point in \u201cdelegated Managed Service Account\u201d or dMSA \u2014 a function that was launched in <strong>Home windows Server 2025<\/strong>.<\/p>\n<p>A number of the important flaws addressed this month with the best severity (between 9.0 and 9.9 CVSS scores) embrace a distant code execution bug within the <strong>Home windows GDI+<\/strong> part that handles graphics rendering (<a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2025-53766\" target=\"_blank\" rel=\"noopener\">CVE-2025-53766<\/a>) and <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2025-50165\" target=\"_blank\" rel=\"noopener\">CVE-2025-50165<\/a>, one other graphics rendering weak point. One other important patch entails <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/advisory\/CVE-2025-53733\" target=\"_blank\" rel=\"noopener\">CVE-2025-53733<\/a>, a vulnerability in <strong>Microsoft Phrase<\/strong> that may be exploited with out consumer interplay and triggered by way of the Preview Pane.<span id=\"more-71899\"\/><\/p>\n<p>One last important bug tackled this month deserves consideration: <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2025-53778\" target=\"_blank\" rel=\"noopener\">CVE-2025-53778<\/a>, a bug in <strong>Home windows NTLM<\/strong>, a core perform of how Home windows techniques deal with community authentication. In line with Microsoft, the flaw may enable an attacker with low-level community entry and fundamental consumer privileges to use NTLM and elevate to SYSTEM-level entry \u2014 the best stage of privilege in Home windows. Microsoft charges the exploitation of this bug as \u201cextra probably,\u201d though there isn&#8217;t any proof the vulnerability is being exploited for the time being.<\/p>\n<p>Be happy to holler within the feedback in case you expertise issues putting in any of those updates. As ever, the <strong>SANS Web Storm Middle<\/strong> has its <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/isc.sans.edu\/diary\/Microsoft%20August%202025%20Patch%20Tuesday\/32192\" target=\"_blank\" rel=\"noopener\">helpful breakdown<\/a> of the Microsoft patches listed by severity and CVSS rating, and <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.askwoody.com\/2025\/august-2025-security-updates\/\" target=\"_blank\" rel=\"noopener\">AskWoody.com<\/a> is protecting a watch out for Home windows patches which will trigger issues for enterprises and finish customers.<\/p>\n<h2>GOOD MIGRATIONS<\/h2>\n<p>Home windows 10 customers on the market probably have seen by now that Microsoft actually desires you to improve to Home windows 11. The reason being that after the Patch Tuesday on October 14, 2025, Microsoft will cease transport free safety updates for <strong>Home windows 10<\/strong> computer systems. The difficulty is, many PCs working Home windows 10 don&#8217;t meet the {hardware} specs required to put in <strong>Home windows 11\u00a0<\/strong>(or they do, however simply barely).<\/p>\n<p>If the expertise with Home windows XP is any indicator, many of those older computer systems will wind up in landfills or else might be left working in an unpatched state. But when your Home windows 10 PC doesn\u2019t have the {hardware} chops to run Home windows 11 and also you\u2019d nonetheless wish to get some use out of it safely, contemplate putting in a newbie-friendly model of Linux, like <strong>Linux Mint<\/strong>.<\/p>\n<p>Like most trendy Linux variations, Mint will run on something with a 64-bit CPU that has at the least 2GB of reminiscence, though 4GB is really helpful. In different phrases, it is going to run on virtually any laptop produced within the final decade.<\/p>\n<p>There are a lot of variations of Linux out there, however Linux Mint is prone to be essentially the most intuitive interface for normal Home windows customers, and it&#8217;s largely configurable with none fuss on the text-only command-line immediate. Mint and different flavors of Linux include <strong>LibreOffice<\/strong>, which is an open supply suite of instruments that features functions much like Microsoft Workplace, and it might open, edit and save paperwork as Microsoft Workplace recordsdata.<\/p>\n<p>In case you\u2019d desire to present Linux a check drive earlier than putting in it on a Home windows PC, you possibly can at all times simply obtain it to a detachable USB drive. From there, reboot the pc (with the detachable drive plugged in) and choose the choice at startup to run the working system from the exterior USB drive. In case you don\u2019t see an choice for that after restarting, strive restarting once more and hitting the F8 button, which ought to open an inventory of bootable drives. <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.youtube.com\/watch?v=_qZI6i21jB4\" target=\"_blank\" rel=\"noopener\">Right here\u2019s a reasonably thorough tutorial<\/a> that walks by way of precisely easy methods to do all this.<\/p>\n<p>And if that is your first time attempting out Linux, loosen up and have enjoyable: The great factor a couple of \u201cstay\u201d model of Linux (because it\u2019s referred to as when the working system is run from a detachable drive equivalent to a CD or a USB stick) is that none of your modifications persist after a reboot. Even in case you one way or the other handle to interrupt one thing, a restart will return the system again to its unique state.<\/p>\n<\/p><\/div>\n\n","protected":false},"excerpt":{"rendered":"<p>Microsoft at present launched updates to repair greater than 100 safety flaws in its Home windows working techniques and different software program. At the very least 13 of the bugs obtained Microsoft\u2019s most-dire \u201cimportant\u201d score, which means they may very well be abused by malware or malcontents to achieve distant entry to a Home windows [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":5553,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[58],"tags":[4205,406,262,618,1077,211,1078],"class_list":["post-5551","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-august","tag-edition","tag-krebs","tag-microsoft","tag-patch","tag-security","tag-tuesday"],"_links":{"self":[{"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/posts\/5551","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=5551"}],"version-history":[{"count":1,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/posts\/5551\/revisions"}],"predecessor-version":[{"id":5552,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/posts\/5551\/revisions\/5552"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/media\/5553"}],"wp:attachment":[{"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=5551"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=5551"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=5551"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}<!-- This website is optimized by Airlift. Learn more: https://airlift.net. Template:. Learn more: https://airlift.net. Template: 69d9690a190636c2e0989534. Config Timestamp: 2026-04-10 21:18:02 UTC, Cached Timestamp: 2026-06-21 05:43:40 UTC -->