SELECTED BY THE TALOS SECURITY INTELLIGENCE AND RESEARCH GROUP
Title: Microsoft discloses fewest vulnerabilities in a month since January
Description: Microsoft released its monthly security update Tuesday, disclosing 58 vulnerabilities across its suite of products, the lowest number of vulnerabilities in any Patch Tuesday since January. There are only 10 critical vulnerabilities as part of this release, while there are two moderate-severity exploits, and the remainder are considered "important." Users of all Microsoft and Windows products are urged to update their software as soon as possible to avoid possible exploitation of all these bugs. The security updates cover several different products and services, including the SharePoint file-sharing service, the Windows Backup Engine and the Exchange mail server.
Snort SIDs: 56554, 56557, 56558, 56560 - 56562 and 56564
Title: RegretLocker targets Windows virtual machines
Description: Cisco Talos recently released new protection against the recently discovered RegretLocker ransomware. The malware was discovered last month targeting Windows virtual machines. The malware encrypts virtual hard drives and can also close open files to encrypt them. Once all the victim's files are encrypted, they're presented with a text file that asks victims to pay a ransom payment by emailing the actors. While RegretLocker is not particularly flashy, security researchers have found the malware uses several techniques that make it very problematic for virtual machine users.
Snort SIDs: 56555, 56556