Sam's Tech Hub

Welcome to Sam's Tech Hub - a dedicated space for enthusiasts and professionals to explore everything Microsoft! From the latest tech news, trending topics, and insightful articles to hands-on solutions, step-by-step guides, product updates, and in-depth reviews, Sam's Tech Hub is your go-to resource for all things Microsoft. Dive in for valuable learning support and stay up-to-date with evolving technologies in the Microsoft Platform. Sam's Tech Hub - Keep Exploring. Happy Learning! :)

Saturday, September 28, 2024

⚠️ Microsoft is Deprecating Windows Server Update Services (WSUS) ⚠️

Posted by Samitha Dasun Peiris on September 28, 2024

 

On September 20, 2024, Microsoft officially announced the deprecation of Windows Server Update Services (WSUS). This move is part of Microsoft's strategy to modernize Windows management with cloud-based solutions. Specifically, this means that Microsoft is no longer investing in new capabilities, nor accepting new feature requests for WSUS. However, current functionality will be preserved, and updates will continue to be published through the WSUS channel. Microsoft will also support any content already published through the WSUS channel. Here’s a detailed look at what this means and how you can prepare for the transition.

What is WSUS?

WSUS has been a vital tool for IT administrators, enabling them to manage the distribution of updates released through Microsoft Update to computers in a corporate environment. It provides control over updates, allowing administrators to approve or decline updates, select target computers, and generate detailed reports. Introduced in 2005 as Software Update Services (SUS), WSUS has been essential for managing and distributing updates across large corporate networks, ensuring secure and controlled updates for numerous Windows devices.

Why is WSUS Being Deprecated?

Microsoft is shifting towards cloud-based solutions to enhance update management. While WSUS will no longer receive new features, it will continue to function for existing updates. This move aligns with Microsoft’s vision for simplified, cloud-centric management tools. 

Deprecation refers to the stage in the product lifecycle when a feature or functionality is no longer in active development and may be removed in future releases. Each release of Windows Server adds new features and functionality; occasionally, features and functionality are removed, typically because a better option has been added. Deprecated features continue to work and are fully supported until they are officially removed. Microsoft has no current plans to remove WSUS from in-market versions of Windows Server, including Windows Server 2025.

Impact

The deprecation of WSUS will take effect with the release of Windows Server 2025. With this release, WSUS will not be actively developed or enhanced. Additionally, Microsoft plans to phase out the drive synchronization feature in WSUS on April 18, 2025. Organizations relying on WSUS should start planning their transition to alternative solutions.

Transitioning to Cloud-Based Tools

Microsoft suggests transitioning to the following cloud-based tools:
  • Windows Autopatch: Automates updates for Windows clients and Microsoft 365 apps.
  • Microsoft Intune: Offers comprehensive endpoint management, including update management.
  • Azure Update Manager: Provides robust features for server update management.
These tools offer improved security, efficiency, and integration with other Microsoft services, making them suitable replacements for WSUS.

Conclusion

The deprecation of WSUS marks a significant shift towards cloud-based update management solutions. By transitioning to tools like Windows Autopatch, Microsoft Intune, and Azure Update Manager, organizations can benefit from improved security, efficiency, and integration with other Microsoft services. Start planning your transition today to ensure a smooth and seamless update management experience.

Keep Exploring. Happy Learning! ๐Ÿ˜Š
Posted in , , , ,

Sunday, September 15, 2024

⚡Microsoft's September 2024 Patch Tuesday: A Comprehensive Overview⚡

Posted by Samitha Dasun Peiris on September 15, 2024

Introduction

Microsoft's September 2024 Patch Tuesday has addressed a total of 79 security vulnerabilities, including four zero-day vulnerabilities and seven critical vulnerabilities. This month's updates span across various Microsoft products and services, enhancing security and stability for users worldwide. Below is a detailed breakdown of these vulnerabilities by type:
  • Remote Code Execution (RCE): 12
  • Elevation of Privilege (EoP): 35
  • Denial of Service (DoS): 4
  • Spoofing Vulnerabilities: 3
  • Security Feature Bypass (SFB): 3
  • Information Disclosure: 18
  • Cross-Site Scripting (XSS): 1
  • Other vulnerabilities: 3

Key Highlights

01. Zero-Day Vulnerabilities
  • Mark-of-the-Web Bypass (CVE-2024-38217): Actively exploited, allowing crafted files to bypass SmartScreen or attachment services. This vulnerability highlights risks associated with file downloads.
  • Windows Installer EoP (CVE-2024-38014): Exploited locally to grant SYSTEM privileges due to improper privilege management.
  • Microsoft Publisher Macro Policy Bypass (CVE-2024-38226): Requires local user authentication to bypass macro restrictions, posing risks for organizations.
  • SharePoint Critical RCEs (e.g., CVE-2024-38018): Exploits deserialization flaws to gain control via malicious uploads, emphasizing the need for secure configurations.

02. Critical RCE Vulnerabilities
  • Affect key products like SharePoint and Windows Network Address Translation (NAT). The NAT vulnerability (CVE-2024-38119) involves a "use-after-free" flaw, requiring network adjacency for exploitation.
03. Product-Specific Updates
  • Windows: Multiple privilege elevation and RCE patches for Windows 10, 11, and Server editions.
  • Microsoft 365 Apps: Fixes for Excel, Publisher, and SharePoint vulnerabilities.
  • Power Automate: An RCE vulnerability (CVE-2024-43479) addressed for secure automation workflows.
04. Zero-Day Defense Recommendations
  • Regularly update software to prevent exploitation.
  • Enable enhanced security features like SmartScreen and macro-blocking policies.
  • Monitor for suspicious activity on systems running affected versions.

Conclusion

With 35 elevation-of-privilege vulnerabilities addressed and critical fixes for RCE vulnerabilities in widely-used tools like SharePoint, the September 2024 Patch Tuesday underlines Microsoft's commitment to securing its ecosystem. Organizations should prioritize deploying these patches to ensure compliance and maintain a robust security posture.

The complete list of the vulnerabilities can be found here - Microsoft release notes.

Keep Exploring. Happy Learning! ๐Ÿ˜Š
Posted in , , , ,

Friday, September 13, 2024

๐Ÿ“ข New Microsoft Certification Exam Pricing ๐Ÿ“ข

Posted by Samitha Dasun Peiris on September 13, 2024

New Microsoft Certification Exam Pricing Effective November 1, 2024


Microsoft is updating its Certification exam pricing to reflect the value and evolving needs of the IT industry. These globally recognized certifications validate your skills and boost career opportunities.

Key points:

  • Certification prices will change depending on the region—some will increase, some will decrease, and many will remain the same.
  • For Sri Lanka:
    • Fundamental certifications will be reduced from $55 to $44.
    • Advanced role-based certifications will drop from $80 to $58.
  • You can register for exams at the current price until October 31, 2024.
  • Explore free and paid resources on Microsoft Learn to prepare.
  • To find the updated price of the exams in your area, check out the full list via https://aka.ms/CertificationExamPrice

Earning a Microsoft Certification can elevate your career, improve work quality, and enhance your credibility. Don't miss out!


Keep Exploring. Happy Learning!๐Ÿ˜Š
Posted in , ,
Subscribe to: Posts (Atom)