{"id":39104,"date":"2021-01-12T21:11:36","date_gmt":"2021-01-12T21:11:36","guid":{"rendered":"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/"},"modified":"2021-01-12T21:11:36","modified_gmt":"2021-01-12T21:11:36","slug":"microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/","title":{"rendered":"Microsoft emits 83 security fixes in first Patch Tuesday of 2021 \u2013 and miscreants are already exploiting one of them"},"content":{"rendered":"<p><span data-label=\"patch tuesday\">Patch Tuesday<\/span> Microsoft on Tuesday released updates addressing <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\">83 vulnerabilities<\/a> in its software, which doesn&#8217;t include the <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/ADV200002\">13 flaws<\/a> fixed in its Edge browser last week.<\/p>\n<p>That&#8217;s up from <a target=\"_blank\" href=\"https:\/\/www.theregister.com\/2020\/12\/08\/patch_tuesday_fixes\/\" rel=\"noopener noreferrer\">58 repairs<\/a> made in December, 2020, a relatively light month by recent standards.<\/p>\n<div class=\"adun\" data-pos=\"top\" data-raptor=\"eagle\" data-xsm=\",button,mpu_plusplus,\" data-sm=\",button,mpu_plusplus,\"> <noscript> <a href=\"https:\/\/pubads.g.doubleclick.net\/gampad\/jump?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x250%7C300x252%7C300x600&amp;tile=3&amp;c=33X-4sfQn8a9ZKCDNXNNW0awAAAAI&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dtop%26test%3D0\" target=\"_blank\" rel=\"noopener noreferrer\"> <img decoding=\"async\" src=\"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x250%7C300x252%7C300x600&amp;tile=3&amp;c=33X-4sfQn8a9ZKCDNXNNW0awAAAAI&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dtop%26test%3D0\" alt> <\/a> <\/noscript> <\/div>\n<p>Affected applications include: Microsoft Windows, Microsoft Edge (EdgeHTML-based), Microsoft Office and Microsoft Office Services and Web Apps, Microsoft Windows Codecs Library, Visual Studio, SQL Server, Microsoft Malware Protection Engine, .NET Core, .NET Repository, ASP .NET, and Azure.<\/p>\n<p>In the current crop of 83, 10 vulnerabilities are critical and 73 are rated important. One of these bugs (<a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2021-1648\">CVE-2021-1648<\/a>) is publicly known, according to Microsoft, while another, (<a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2021-1647\">CVE-2021-1647<\/a>), in Windows security systems is actively being exploited.<\/p>\n<p>CVE-2021-1647 is a Microsoft Defender remote code execution (RCE) vulnerability. In a <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/www.zerodayinitiative.com\/blog\/2021\/1\/12\/the-january-2021-security-update-review\">blog pos<\/a>t, Zero Day Initiative&#8217;s Dustin Childs speculates that the flaw, which for some may already have been patched automatically, could have played a role in the SolarWinds fiasco.<\/p>\n<div class=\"promo_article\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/regmedia.co.uk\/2019\/09\/18\/shutterstock_code_bug.jpg?x=174&amp;y=115&amp;crop=1\" width=\"174\" height=\"115\" alt=\"A bug in the code\"><\/p>\n<h2 title=\"Light load from Redmond as everyone else seeks to bury bad news, sorry, align in update cadence\">Patch Tuesday brings bug fixes for OpenSSL, IBM, SAP, Kubernetes, Adobe, and Red Hat. And Microsoft, of course<\/h2>\n<p><a href=\"https:\/\/www.theregister.com\/2020\/12\/08\/patch_tuesday_fixes\/\"><span>READ MORE<\/span><\/a><\/div>\n<p>CVE-2021-1648 is a Microsoft splwow64 elevation of privilege problem that was created by a previous patch, according to Childs. He singles out two other critical vulnerabilities of note: <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2021-1677\">CVE-2021-1677<\/a>, an Azure Active Directory pod identity spoofing flaw that could allow an attacker to obtain identities associated with different Kubernetes pods, and <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2021-1674\">CVE-2021-1674<\/a>, a Windows Remote Desktop Protocol (RDP) core security feature bypass.<\/p>\n<p>Conspicuously absent from January&#8217;s Patch Tuesday is a fix to address a bypass for <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2020-16875\">CVE-2020-16875<\/a>, an Exchange Server RCE supposedly repaired in September, 2020.<\/p>\n<p>Infosec researcher Steven Seeley, who says he reported the initial flaw through Microsoft&#8217;s Office 365 Cloud Bounty program, subsequently identified two ways around the patch, one of which was fixed last month via <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2020-17132\">CVE-2020-17132<\/a>.<\/p>\n<p>The second bypass has yet to be addressed. &#8220;I reported this patch bypass on the 9th of December, 2020 just one day after Patch Tuesday and unfortunately at this time there is no mitigation against this attack for on-premise deployments of Exchange Server,&#8221; he wrote in a <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/srcincite.io\/blog\/2021\/01\/12\/making-clouds-rain-rce-in-office-365.html\">blog post<\/a> on Tuesday.<\/p>\n<p>In a message to <i>The Register<\/i>, Seeley explained that an authenticated attacker with the &#8220;Data Loss Prevention&#8221; role is required to exploit this vulnerability and gain RCE as SYSTEM, the highest privilege level available on Windows under Ring 3.<\/p>\n<p>In other patch-paloozas, SAP <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/wiki.scn.sap.com\/wiki\/pages\/viewpage.action?pageId=564760476\">rolled out<\/a> 10 security advisories and seven updates to previous advisories. One of these, <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/launchpad.support.sap.com\/#\/notes\/2622660\">2622660<\/a>, which revises the browser control Google Chromium delivered with SAP Business Client, carries a CVSS (im)perfect score of 10.<\/p>\n<p>Adobe, meanwhile, released <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/helpx.adobe.com\/security.html\">advisories<\/a> covering eight CVEs in Bridge, Captivate, InCopy, Campaign Classic, Animate, Illustrator, and Photoshop.<\/p>\n<p>On Monday, Mozilla issued a critical fix for Thunderbird, <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/www.mozilla.org\/en-US\/security\/advisories\/mfsa2021-02\/#CVE-2020-16044\">CVE-2020-16044<\/a>, a user-after-free write bug that&#8217;s been patched to prevent potential usage for running arbitrary remote code.<\/p>\n<p>And earlier this month, Google published <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/source.android.com\/security\/bulletin\/2021-01-01\">43 CVEs<\/a>, covering Android, Google Play, and components from hardware partners MediaTek and Qualcomm. Two of the flaws are critical (<a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/android.googlesource.com\/platform\/frameworks\/minikin\/+\/ffb33bcf2520208166cb29f47c60add9c0e37349\">CVE-2021-0313<\/a> and <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/android.googlesource.com\/platform\/system\/bt\/+\/f328ab46d5419632aec221f95b186ec71077176e\">CVE-2021-0316<\/a>). The latter bug could allow a remote attacker to execute arbitrary code on an Android device.<\/p>\n<div class=\"adun\" data-pos=\"top\" data-raptor=\"falcon\" data-xsm=\",button,dbutton,mpu_plus,dmpu,\" data-sm=\",button,dbutton,mpu_plus,dmpu,\"> <noscript> <a href=\"https:\/\/pubads.g.doubleclick.net\/gampad\/jump?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x100%7C300x250%7C300x251&amp;tile=4&amp;c=44X-4sfQn8a9ZKCDNXNNW0awAAAAI&amp;t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0\" target=\"_blank\" rel=\"noopener noreferrer\"> <img decoding=\"async\" src=\"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x100%7C300x250%7C300x251&amp;tile=4&amp;c=44X-4sfQn8a9ZKCDNXNNW0awAAAAI&amp;t=ct%3Dns%26unitnum%3D426raptor%3Dfalcon%26pos%3Dmid%26test%3D0\" alt> <\/a> <\/noscript> <\/div>\n<p>Two critical flaws are also addressed in the fixes for Qualcomm&#8217;s closed-source components but details have not been made public. As ever with Android updates, get it direct from Google if you can, or wait for your carrier and manufacturer to catch up. \u00ae<\/p>\n<p> READ MORE <a href=\"https:\/\/go.theregister.com\/feed\/www.theregister.com\/2021\/01\/12\/patch_tuesday_fixes\/\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Redmond keeps us hanging with on-premises Exchange flaw still to be fixed Patch Tuesday\u00a0 Microsoft on Tuesday released updates addressing 83 vulnerabilities in its software, which doesn&#8217;t include the 13 flaws fixed in its Edge browser last week.\u2026  READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[63],"tags":[],"class_list":["post-39104","post","type-post","status-publish","format-standard","hentry","category-the-register"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Microsoft emits 83 security fixes in first Patch Tuesday of 2021 \u2013 and miscreants are already exploiting one of them 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Microsoft emits 83 security fixes in first Patch Tuesday of 2021 \u2013 and miscreants are already exploiting one of them 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2021-01-12T21:11:36+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x250%7C300x252%7C300x600&amp;tile=3&amp;c=33X-4sfQn8a9ZKCDNXNNW0awAAAAI&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dtop%26test%3D0\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Microsoft emits 83 security fixes in first Patch Tuesday of 2021 \u2013 and miscreants are already exploiting one of them\",\"datePublished\":\"2021-01-12T21:11:36+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\\\/\"},\"wordCount\":580,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/pubads.g.doubleclick.net\\\/gampad\\\/ad?co=1&amp;iu=\\\/6978\\\/reg_security\\\/front&amp;sz=300x250%7C300x252%7C300x600&amp;tile=3&amp;c=33X-4sfQn8a9ZKCDNXNNW0awAAAAI&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dtop%26test%3D0\",\"articleSection\":[\"The Register\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\\\/\",\"name\":\"Microsoft emits 83 security fixes in first Patch Tuesday of 2021 \u2013 and miscreants are already exploiting one of them 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/pubads.g.doubleclick.net\\\/gampad\\\/ad?co=1&amp;iu=\\\/6978\\\/reg_security\\\/front&amp;sz=300x250%7C300x252%7C300x600&amp;tile=3&amp;c=33X-4sfQn8a9ZKCDNXNNW0awAAAAI&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dtop%26test%3D0\",\"datePublished\":\"2021-01-12T21:11:36+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\\\/#primaryimage\",\"url\":\"https:\\\/\\\/pubads.g.doubleclick.net\\\/gampad\\\/ad?co=1&amp;iu=\\\/6978\\\/reg_security\\\/front&amp;sz=300x250%7C300x252%7C300x600&amp;tile=3&amp;c=33X-4sfQn8a9ZKCDNXNNW0awAAAAI&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dtop%26test%3D0\",\"contentUrl\":\"https:\\\/\\\/pubads.g.doubleclick.net\\\/gampad\\\/ad?co=1&amp;iu=\\\/6978\\\/reg_security\\\/front&amp;sz=300x250%7C300x252%7C300x600&amp;tile=3&amp;c=33X-4sfQn8a9ZKCDNXNNW0awAAAAI&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dtop%26test%3D0\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Microsoft emits 83 security fixes in first Patch Tuesday of 2021 \u2013 and miscreants are already exploiting one of them\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Microsoft emits 83 security fixes in first Patch Tuesday of 2021 \u2013 and miscreants are already exploiting one of them 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/","og_locale":"en_US","og_type":"article","og_title":"Microsoft emits 83 security fixes in first Patch Tuesday of 2021 \u2013 and miscreants are already exploiting one of them 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2021-01-12T21:11:36+00:00","og_image":[{"url":"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x250%7C300x252%7C300x600&amp;tile=3&amp;c=33X-4sfQn8a9ZKCDNXNNW0awAAAAI&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dtop%26test%3D0","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Microsoft emits 83 security fixes in first Patch Tuesday of 2021 \u2013 and miscreants are already exploiting one of them","datePublished":"2021-01-12T21:11:36+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/"},"wordCount":580,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/#primaryimage"},"thumbnailUrl":"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x250%7C300x252%7C300x600&amp;tile=3&amp;c=33X-4sfQn8a9ZKCDNXNNW0awAAAAI&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dtop%26test%3D0","articleSection":["The Register"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/","url":"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/","name":"Microsoft emits 83 security fixes in first Patch Tuesday of 2021 \u2013 and miscreants are already exploiting one of them 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/#primaryimage"},"thumbnailUrl":"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x250%7C300x252%7C300x600&amp;tile=3&amp;c=33X-4sfQn8a9ZKCDNXNNW0awAAAAI&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dtop%26test%3D0","datePublished":"2021-01-12T21:11:36+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/#primaryimage","url":"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x250%7C300x252%7C300x600&amp;tile=3&amp;c=33X-4sfQn8a9ZKCDNXNNW0awAAAAI&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dtop%26test%3D0","contentUrl":"https:\/\/pubads.g.doubleclick.net\/gampad\/ad?co=1&amp;iu=\/6978\/reg_security\/front&amp;sz=300x250%7C300x252%7C300x600&amp;tile=3&amp;c=33X-4sfQn8a9ZKCDNXNNW0awAAAAI&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dtop%26test%3D0"},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/microsoft-emits-83-security-fixes-in-first-patch-tuesday-of-2021-and-miscreants-are-already-exploiting-one-of-them\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Microsoft emits 83 security fixes in first Patch Tuesday of 2021 \u2013 and miscreants are already exploiting one of them"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/39104","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=39104"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/39104\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=39104"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=39104"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=39104"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}