[German]Just a brief view of Facebook’s approach of securing users with malware protection. The ‘Malware protection’ attempt of the social network causes some Facebook users a lot of trouble and prevents them from logging in.
[German]Microsoft released various updates for Windows 7 to Windows 10 (including servers) and Internet Explorer on February 21 and 22, 2018. Here is an overview of these updates.
Microsoft has released Windows 10 Insider Preview Build 17107 (Redstone 4 branch) for PC in Fast Ring. There is no build for the Skip Ahead branch (RS5). Details about the new Insider Preview may be read within Windows-Blog.
[German]Intel released another batch of microcode updates (to OEMs) to close the Spectre V2 vulnerability for 6th, 7th and 8th generation Intel CPUs.
[German]I don’t know if anyone else is using Bittorrent via the uTorrent client or their web client. For security reasons, you should not use the these clients any more.
[German]Many users are knowing 7-Zip as a tool for unpacking archive files. The software is free of charge and is also available in a portable version for Windows. In addition, 7-Zip is also used in various products. Funny world? Unfortunately, there is a dark side of 7-Zip, because the tool is potentially a huge security risk. Here are some hints about what you should know – and a final piece of advice.
[German]Windows 10 had a bug, that allowed malware to trick Windows 10’s Anti-Malware Scan Interface (AMSI) by including a null character. The character simply caused the code not to be scanned. The bug was fixed on February 2018 patchday.
[German]Microsoft has released some details about the limitations of Windows 10 on ARM last weekend. But a few hours later, the documents on the web that refer to the limitations of Windows 10 on ARM has been reworked, and relevant passages are deleted. Apparently this information published on Saturday should not be made public in this way. Fortunately, the details are known.
Microsoft has released on February 16, 2018, revised security information about Advisory CVE-2018-0810 and CVE-2018-0831.
[German]Microsoft currently fails to deliver updates in a secure way. In a Security by obscurity style, Microsoft offers update downloads via insecure http protocol. This also applies to downloads from the Microsoft Update Catalog. And Microsoft Update Catalog strikes, if it is called from the wrong URL.