{"id":1074,"date":"2021-01-13T09:45:20","date_gmt":"2021-01-13T14:45:20","guid":{"rendered":"https:\/\/increasec.com\/?p=1074"},"modified":"2021-01-13T09:45:20","modified_gmt":"2021-01-13T14:45:20","slug":"bad-combination","status":"publish","type":"post","link":"https:\/\/increasec.com\/?p=1074","title":{"rendered":"Bad Combination"},"content":{"rendered":"\n<figure class=\"wp-block-table\"><table><tbody><tr><td>Microsoft Defender Remote Code Execution Vulnerability<\/td><td><a href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2021-1647\">CVE-2021-1647<\/a><\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<p class=\"wp-block-paragraph\">This is what many security professionals have been dreading.  M$ Defender is on by default on all builds, installing patches turns it back on, some companies force it to be on.  It has system level authority which is 1 level better than administrator.  Combine that with the unwillingness to patch servers for fear of breaking them and this is worst possible combination.  Which is why Microsoft is trying to sandbox Defender.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Microsoft Defender Remote Code Execution Vulnerability CVE-2021-1647 This is what many security professionals have been dreading. M$ Defender is on by default on all builds, installing patches turns it back&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[4],"class_list":["post-1074","post","type-post","status-publish","format-standard","hentry","category-uncategorised","tag-security"],"_links":{"self":[{"href":"https:\/\/increasec.com\/index.php?rest_route=\/wp\/v2\/posts\/1074","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/increasec.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/increasec.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/increasec.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/increasec.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1074"}],"version-history":[{"count":2,"href":"https:\/\/increasec.com\/index.php?rest_route=\/wp\/v2\/posts\/1074\/revisions"}],"predecessor-version":[{"id":1086,"href":"https:\/\/increasec.com\/index.php?rest_route=\/wp\/v2\/posts\/1074\/revisions\/1086"}],"wp:attachment":[{"href":"https:\/\/increasec.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1074"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/increasec.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1074"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/increasec.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1074"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}