Microsoft has recently announced the release of the first set of security patches for 2021 – where it fixed 83 documented security vulnerabilities. It includes a critical bug in its Defender security product, and that is being actively exploited.
Security professionals are urging the threat response personnel to pay particular attention to CVE-2021-1647. It is a remote code execution flaw in its anti-malware product.
Microsoft Defender update has exploitation detected notice. In its essence, the company explains, “Best practices recommend that customers regularly verify whether software distribution, such as the automatic deployment of Microsoft Malware Protection Engine updates and malware definitions, is working as expected in their environment.”
Source: SecurityWeek