Hello, welcome to the Wednesday, June 9th, 2021 edition of the Sandcent Storm Center's Stormcast.

My name is Johannes Ulrich.

And I'm recording from Jacksonville, Florida.

Well, of course, today, Microsoft's patched Tuesday, we got patches for 50 vulnerabilities, five of which are critical. Two had a privacy been disclosed,

and six of these vulnerabilities were already being exploited. Kasperski actually has a blog post

about an attack that led them to two of these already being exploited vulnerabilities. They call it

a puzzle maker. The attack used three vulnerabilities in total, one remote code execution

vulnerability against Google Chrome, and then two of these vulnerabilities that Microsoft

patched today that are privilege escalation vulnerabilities.

Also interesting, the Google Chrome vulnerability was first found or disclosed as part of the

Pohn to Own program mid-April. A day later, proof-of-concept exploit was released without any sort of sandbox escape mechanism

and the attack that Kerspersky found just happened then another day later so April 14th,

April 15th is when Kerspersky did see the fully weaponized exploit chain being used in the while.

Google actually released an update to Google Chrome about a day before on April 13th.

So definitely, you know, make sure you keep those browsers up to date.

Those vulnerabilities are exploited pretty quickly after they become known.

And now, of course, we do get the fixes from Microsoft for these privilege escalation

vulnerabilities that were used as part of this puzzle maker attack.

Additional noteworthy vulnerabilities being patched by Microsoft this month is an off-occasion

bypass vulnerability in the Kerberus app container. It got a CVSS score of 9.4. There is also a remote

code execution vulnerability affecting Windows Defender.

And Microsoft rates the complexity of potential attack as low.

...