• Dealing with DCOM

    Posted on June 27, 2022 at 02:41 CDT by Comment in the Forums

    PATCH WATCH

    Susan Bradley

    By Susan Bradley

    In the June updates, Microsoft continues its journey to harden the Distributed Component Object Model (DCOM), with the goal of making it more resilient to attack.

    DCOM is a proprietary Microsoft software component that allows COM objects to communicate with each other over a network. Network OLE was the precursor to DCOM (remember Windows 3.1.1?). Because DCOM can run programs on other computers, hackers can leverage it for lateral-movement attacks through your network, gaining access to more data. This activity can be difficult to detect because it’s not malware or hacker tools — all it takes to access DCOM is PowerShell.

    Read the full story in our Plus Newsletter (19.26.0, 2022-06-27).

    AskWoody Plus Newsletter, Patch Watch , , , ,
DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • How to use the Forums
  • All Forums

    • Recent Topics

    October 2023
    S M T W T F S
    1234567
    891011121314
    15161718192021
    22232425262728
    293031  

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2023 by AskWoody Tech LLC. All Rights Reserved.