Microsoft Patched It. It Didn’t Work.
0 up · 0 down · 0 ratings
Promos
Thanks to Micro Center for sponsoring this video! Shop Micro Center’s Monthly Savings: micro.center Affirm Now Available at Micro Center: micro.center NEWS SOURCES: lmg.gg ► GET MERCH: lttstore.com ► GET EXCLUSIVE CONTENT ON FLOATPLANE: lmg.gg ► GET A VPN: piavpn.com ► LISTEN TO THE TECH NEWS: lmg.gg ► SPONSORS, AFFILIATES, AND PARTNERS: lmg.gg ► OUR PODCAST GEAR: lmg.gg --------------------------------------------------- Timestamps: 0:00 maybe another time 0:17 Microsoft SharePoint flaw exploited 1:53 Ubisoft CEO on Stop Killing Games 3:14 Replit AI goes rogue, deletes database 4:58 Micro Center! 5:36 QUICK BITS INTRO 5:46 Steam games on RISC-V, Linux 6:23 Google, OpenAI win Math Olympiad 7:15 UK may back out of Apple iCloud order 7:52 AI robot performs surgery
The video opens by detailing a high profile security fault in Microsoft SharePoint, described as two zero day vulnerabilities nicknamed tool shell that allowed exploitation across global SharePoint servers. It explains that Microsoft reportedly patched the flaws earlier in the month, yet the patch did not fully close the gap, leaving tens of thousands of on premise servers at risk while SharePoint Online in the cloud appeared unaffected. The segment highlights how the attack was first spotted over the preceding weekend by security researchers who notified both victims and Microsoft, and notes that the red team Code White later reproduced the flaw, crediting the original researcher who publicly demonstrated the exploit during a Berlin hacking contest. The narrative then weaves in broader tech context with a look at industry reactions and the tension between patching and practical security, including the role of government alerts from CISA urging rapid remediation and the ongoing efforts to patch SharePoint 2016 and 2019. Throughout, the piece underscores the complexity of patch management in enterprise environments and the real-world impact of delayed fixes on organizations and governments. The host ties the incident to wider tech news and emphasizes that timely, validated patches matter even when cloud services appear insulated, closing with reflections on responsible disclosure and ongoing vigilance in software maintenance.
Topics · technology · cybersecurity · software_patch · linux · ai · news
Questions answered
- What caused the SharePoint vulnerability and how was it discovered?
- Two zero-day vulnerabilities exploited through a tool shell were identified in SharePoint servers; the issues were first spotted by security researchers who tracked attacks over a weekend and notified Microsoft and victims.
- What is the status of the patches and what parts remain unpatched?
- Microsoft issued emergency patches for SharePoint 2019 as of the July patch Tuesday, but patches for SharePoint 2016 were still in development, and on-premises servers in many organizations remained at risk.