We help you save time, money and improve your IT security

Integrate Third-Party Patch Management in Microsoft ConfigMgr and Intune

Patch Tuesday Support Group May Webinar

Webinar Summary

Jordan Benzing goes over the latest update releases, including CVE-2024-30040 and CVE-2024-30051 followed up by Bryan Dam digging into a large list of articles for the month of May. Wrapping up and joining Jordan and Bryan for the Patch Tuesday Support Group May webinar is Gerry Hampson discussing BYOD management.

Watch the Webinar Recording

Webinar Hosts

Bryan Dam

Bryan Dam

Patch My PC
Software Engineer

Bryan Dam

Jordan Benzing

Patch My PC
Security Engineer Lead

Gerry Hampson Profile Photo

Gerry Hampson

Ergo Technology Group
Enterprise Client Management Practice Lead

Patch Tuesday Support Group Webinar Recap

Patch Tuesday May News

NTLM traffic issue after installing the April 2024 security updatehttps://admin.microsoft.com/Adminportal/Home?source=applauncher#/windowsreleasehealth/knownissues/:/issue/WI789351

VPN connections might fail after installing the April 2024 security updatehttps://admin.microsoft.com/Adminportal/Home?source=applauncher#/windowsreleasehealth/:/issue/WI789335

“All Your Secrets Are Belong To Us” — A Delinea Secret Server AuthN/AuthZ Bypasshttps://straightblast.medium.com/all-your-secrets-are-belong-to-us-a-delinea-secret-server-authn-authz-bypass-adc26c800ad3

PuTTY SSH client flaw allows recovery of cryptographic private keyshttps://www.bleepingcomputer.com/news/security/putty-ssh-client-flaw-allows-recovery-of-cryptographic-private-keys/

Ransomware Group Leaks Data From UnitedHealth Hack, Demands More Moneyhttps://www.pcmag.com/news/ransomware-group-leaks-data-from-unitedhealth-hack-demands-more-money

Cisco discloses root escalation flaw with public exploit codehttps://www.bleepingcomputer.com/news/security/cisco-discloses-root-escalation-flaw-with-public-exploit-code/

‘ArcaneDoor’ Cyberspies Hacked Cisco Firewalls to Access Government Networkhttps://www.wired.com/story/arcanedoor-cyberspies-hacked-cisco-firewalls-to-access-government-networks/

FBI chief says Chinese hackers have infiltrated critical US infrastructurehttps://www.theguardian.com/world/2024/apr/19/fbi-china-hack-infrastructure

MITRE Corporation Breached by Nation-State Hackers Exploiting Ivanti Flawhttps://thehackernews.com/2024/04/mitre-corporation-breached-by-nation.html

Windows 10 Settings App will prompt users to create Microsoft Accounthttps://blogs.windows.com/windows-insider/2024/04/15/releasing-windows-10-build-19045-4353-to-release-preview-channel/

MS is wrapping Store apps with a .Net wrapper to make it easier to install from the web?https://twitter.com/RudyHuyn/status/1781839212935069856

Voyager 1 is sending data back to Earth for the first time in 5 monthshttps://www.cnn.com/2024/04/22/world/voyager-1-communication-issue-cause-fix-scn/index.html

IBM acquires HashiCorp for $6.4B, open source Terraform questions remainhttps://www.sdxcentral.com/articles/news/ibm-acquires-hashicorp-for-6-4b-open-source-terraform-questions-remain/2024/04/

UnitedHealth hackers used stolen login credentials to break in, CEO sayshttps://www.reuters.com/technology/cybersecurity/unitedhealth-hackers-took-advantage-citrix-vulnerabilty-break-ceo-says-2024-04-29/

Message-scraping, user-tracking service Spy Pet shut down by Discordhttps://arstechnica.com/tech-policy/2024/04/message-scraping-user-tracking-service-spy-pet-shut-down-by-discord/

Microsoft ties executive pay to security following multiple failures and breacheshttps://arstechnica.com/information-technology/2024/05/microsoft-ties-executive-pay-to-security-following-multiple-failures-and-breaches/

VMware Desktop Hypervisor Pro Apps Now Available for Personal Usehttps://blogs.vmware.com/cloud-foundation/2024/05/14/vmware-desktop-hypervisor-pro-apps-now-available-for-personal-use/

Windows 10 21H2 EDU/ENT goes EoL next Monthhttps://learn.microsoft.com/en-us/windows/release-health/release-information

Announcement: System Center 2025 is herehttps://techcommunity.microsoft.com/t5/system-center-blog/announcement-system-center-2025-is-here/ba-p/4138510

Reducing Windows 10, version 22H2 monthly LCU package sizehttps://techcommunity.microsoft.com/t5/windows-it-pro-blog/reducing-windows-10-version-22h2-monthly-lcu-package-size/ba-p/4121755

What’s New in ConfigMgr 2403 — Software Update Troubleshooting Dashboard, Centralized Search, Support for ARM OSD, Server 2012/2012 R2 are unsupported and will block update, CMGs on classic cloud service blocks update, move to VM scale set. https://learn.microsoft.com/en-us/mem/configmgr/core/plan-design/changes/whats-new-in-version-2403

What’s New in Intune — Intune and the macOS Company Portal app support Platform SSO (public preview), Auto update available with Win32 app supersedence, Crowdstrike Integration for Conditional Access, Windows update distribution report, Remote Help supports full control of a macOS device, GCC customers can use Remote Help for Windows and Android devices, Copilot in Intune is available in the Intune admin center (public preview). https://learn.microsoft.com/en-us/mem/intune/fundamentals/whats-new

Microsoft Patches of Note

View the full list of Patch Tuesday release notes at Patch Tuesday Blog Home Page – Patch Tuesday Blog

Patches Released: 60
Critical Severity: 37
Important Severity: 23
Moderate Severity: 0
N/A Severity: 0

Third Party Updates from Patch My PC

Total Number of Updates: 2776
Critical: 110
Important: 0
Moderate: 2052
Low: 9
N/A: 597

Browser Patch Specifics
Chrome: 26 Patches
FireFox: 288 Patches
Microsoft Edge: 20 Patches
Opera: 10 Patches