CyberSecurityBoard
Sponsor Register Login

Microsoft reminds admins to prepare for WSUS driver sync deprecation

Introduced as Software Update Services (SUS) in 2005, almost two decades ago, WSUS enables IT admins to manage and distribute updates for Microsoft products across enterprise networks with large numbers of Windows devices from a single server instead of having each endpoint download them from Microsoft's servers. After its deprecation, the company encourages enterprises to adopt cloud-based solutions for client and server updates, like Windows Autopatch, Azure Update Manager, and Microsoft Intune. This reminder follows two other warnings issued since June 2024, announcing the deprecation of WSUS driver synchronization and encouraging customers to adopt Redmond's newer cloud-based driver services. Microsoft once again reminded IT administrators that driver synchronization in Windows Server Update Services (WSUS) will be deprecated on April 18, just 60 days from now. In June, Redmond also announced that it had officially deprecated the Windows NTLM authentication protocol, advising developers to transition to Kerberos or Negotiation authentication to prevent future problems.

This Cyber News was published on www.bleepingcomputer.com. Publication date: Tue, 18 Feb 2025 19:25:13 +0000


Cyber News related to Microsoft reminds admins to prepare for WSUS driver sync deprecation

Microsoft delays WSUS driver sync deprecation indefinitely - One month later, Microsoft reminded admins to prepare for WSUS driver sync deprecation, encouraging them to adopt cloud-based solutions for client and server updates, like Windows Autopatch, Microsoft Intune, and Azure Update Manager. Introduced ...
7 months ago Bleepingcomputer.com
Microsoft confirms Windows Server Update Services (WSUS) sync is broken - "Devices trying to synchronize updates from Microsoft Updates using Windows Server for Update Services (WSUS) might fail to complete the synchronization process. Microsoft has confirmed a widespread issue in Windows Server Update Services (WSUS) that ...
4 months ago Bleepingcomputer.com
Microsoft reminds admins to prepare for WSUS driver sync deprecation - Introduced as Software Update Services (SUS) in 2005, almost two decades ago, WSUS enables IT admins to manage and distribute updates for Microsoft products across enterprise networks with large numbers of Windows devices from a single server instead ...
9 months ago Bleepingcomputer.com
PoC WSUS RCE Vulnerability - A critical Remote Code Execution (RCE) vulnerability has been discovered in Microsoft's Windows Server Update Services (WSUS). This flaw allows attackers to execute arbitrary code on affected systems, potentially leading to full system compromise. ...
1 month ago Cybersecuritynews.com CVE-2024-27512
CISA Issues Warning on WSUS Vulnerability Exploited by Threat Actors - The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical warning regarding a newly discovered vulnerability in Windows Server Update Services (WSUS). This vulnerability has been actively exploited by threat actors to gain ...
4 weeks ago Cybersecuritynews.com CVE-2024-27512 UNC2447
Microsoft patch for WSUS flaw disabled Windows Server hotpatching - Microsoft recently released a patch to address a critical flaw in Windows Server Update Services (WSUS). However, this patch inadvertently disabled the hotpatching feature on Windows Server, causing operational challenges for system administrators. ...
3 weeks ago Bleepingcomputer.com
Actively Exploited WSUS Bug Added to CISA Known Exploited Vulnerabilities Catalog - A critical vulnerability in Microsoft's Windows Server Update Services (WSUS) has been actively exploited in the wild, prompting the Cybersecurity and Infrastructure Security Agency (CISA) to add it to its Known Exploited Vulnerabilities Catalog. ...
1 month ago Infosecurity-magazine.com CVE-2024-27512
Microsoft releases Windows Server emergency updates for critical WSUS RCE flaw - Microsoft has released emergency security updates to address a critical remote code execution (RCE) vulnerability in Windows Server Update Services (WSUS). This flaw allows attackers to execute arbitrary code on affected systems, potentially leading ...
1 month ago Bleepingcomputer.com CVE-2024-27512
Microsoft Incident Response lessons on preventing cloud identity compromise - Microsoft Incident Response is often engaged in cases where organizations have lost control of their Microsoft Entra ID tenant, due to a combination of misconfiguration, administrative oversight, exclusions to security policies, or insufficient ...
1 year ago Microsoft.com
WSUS vulnerability: CISA issues late Friday warning - Microsoft's Windows Server Update Services (WSUS) has a critical vulnerability that has prompted a late Friday warning from the Cybersecurity and Infrastructure Security Agency (CISA). This vulnerability could allow attackers to execute remote code, ...
1 month ago Therecord.media CVE-2024-27512
JumpCloud's Q1 2024 SME IT Trends Report Reveals AI Optimism Tempered by Security Concerns - The report provides updated survey results and new findings to the company's biannual SME IT Trends Report, which was first released in June 2021. The latest edition of the report delves into the impact of artificial intelligence on identity ...
1 year ago Darkreading.com
What CIRCIA Means for Critical Infrastructure Providers and How Breach and Attack Simulation Can Help - Cyber Defense Magazine - To prepare themselves for future attacks, organizations can utilize BAS to simulate real-world attacks against their security ecosystem, recreating attack scenarios specific to their critical infrastructure sector and function within that sector, ...
1 year ago Cyberdefensemagazine.com Akira
Hackers Exploit TCP Port WSUS Vulnerability to Launch Attacks - A critical vulnerability in the Windows Server Update Services (WSUS) TCP port has been exploited by hackers, posing significant risks to enterprise networks worldwide. This security flaw allows attackers to gain unauthorized access, potentially ...
3 weeks ago Cybersecuritynews.com CVE-2024-XYZ Unknown
Hackers now exploiting critical Windows Server WSUS flaw in attacks - A critical vulnerability in Windows Server Update Services (WSUS) is now actively exploited by hackers, posing significant risks to enterprise environments. This flaw allows attackers to execute remote code on affected systems, potentially leading to ...
1 month ago Bleepingcomputer.com CVE-2024-27512
CISA orders federal agencies to patch Windows Server WSUS flaw exploited in attacks - The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent directive to all federal agencies to patch a critical vulnerability in Windows Server Update Services (WSUS). This flaw has been actively exploited by threat actors, ...
1 month ago Bleepingcomputer.com CVE-2024-27512
Microsoft pushes fix for Windows 11 update 0x80240069 errors - ​Microsoft has fixed a known issue preventing Windows 11 24H2 feature updates from being delivered via Windows Server Update Services (WSUS) after installing the April 2025 security updates. "Devices which have installed the April Windows ...
6 months ago Bleepingcomputer.com
CVE-2025-39844 - In the Linux kernel, the following vulnerability has been resolved: ...
2 months ago
Microsoft: Windows 11 24H2 updates fail with 0x80240069 errors - "Devices which have installed the April Windows monthly security update, released April 8, 2025, or later (starting with KB5055528) might be unable to update to Windows 11 24H2 via Windows Server Update Services (WSUS)," Microsoft says in a Windows ...
6 months ago Bleepingcomputer.com
Microsoft deprecates Defender Application Guard for Office - Microsoft is deprecating Defender Application Guard for Office and the Windows Security Isolation APIs, and it recommends Defender for Endpoint attack surface reduction rules, Protected View, and Windows Defender Application Control as an ...
1 year ago Bleepingcomputer.com
Action1 vs Microsoft WSUS: A better approach to modern patch management - In today's cybersecurity landscape, effective patch management is crucial for maintaining robust security postures. This article compares Action1 and Microsoft WSUS, two prominent patch management solutions, highlighting their features, benefits, and ...
2 months ago Bleepingcomputer.com
Hackers Exploiting Microsoft WSUS Vulnerability to Deploy Malware - Recent reports have revealed that hackers are actively exploiting a critical vulnerability in Microsoft Windows Server Update Services (WSUS) to deploy malware and gain unauthorized access to corporate networks. This vulnerability, identified as ...
1 month ago Cybersecuritynews.com CVE-2023-35078 Unnamed APT Group
How to manage a migration to Microsoft Entra ID - Microsoft Entra ID, formerly Azure Active Directory, is not a direct replacement for on-premises Active Directory due to feature gaps and alternative ways to perform similar identity and access management tasks. For some organizations, a move to ...
1 year ago Techtarget.com
WSUS RCE Vulnerability: Critical Security Flaw in Windows Server Update Services - A critical Remote Code Execution (RCE) vulnerability has been discovered in Microsoft's Windows Server Update Services (WSUS), posing significant risks to enterprise environments. This flaw allows attackers to execute arbitrary code on affected ...
1 month ago Cybersecuritynews.com CVE-2024-27512
WSUS Vulnerability Actively Exploited: What You Need to Know - A critical vulnerability in Microsoft's Windows Server Update Services (WSUS) is currently being actively exploited by threat actors. This flaw allows attackers to execute arbitrary code on affected systems, potentially leading to full system ...
3 weeks ago Cybersecuritynews.com CVE-2024-12345
Microsoft announces deprecation of 1024-bit RSA keys in Windows - Microsoft has announced that RSA keys shorter than 2048 bits will soon be deprecated in Windows Transport Layer Security to provide increased security. Rivest-Shamir-Adleman is an asymmetric cryptography system that uses pairs of public and private ...
1 year ago Bleepingcomputer.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)