Microsoft Releases Security Update
(May 2, 2018)
The United States Computer Emergency Readiness Team (US-CERT) has issued an alert regarding a vulnerability in the Windows Host Compute Service Shim (hcsshim). A threat actor could exploit this vulnerability, registered as “CVE-2018-8115,” to execute arbitrary code on an affected system.
Recommendation: Patch Tuesday should be expected every month in order to apply the latest security patches to software utilized by your company. Users and administrators should review Microsoft’s Security Advisory, located here “https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8115,” and apply the necessary updates as soon as possible.
Indicators of Compromise (IOCs) associated with this story can be viewed by ThreatStream users here to identify potential malicious activity.