[German]Microsoft is cutting Windows Server channels and eliminating the semi-annual upgrade channels in the future. Starting with the upcoming Windows Server 2022, there will only be so-called LTSC variants every two to three years, which will get five years of mainstream support and another five years of extended support with security updates.. Continue reading
[German]Microsoft has released unscheduled updates for Windows 10 version 1809, as well as Windows 7 SP1 (with ESU) and Windows Server 2008 SP2 (with ESU), effective July 27, 2021. These special updates are intended to fix the printing issue associated with SmartCard authentication. Here is a quick overview of the situation.
[German]Microsoft recently held an “Ask me anything” (AMA) session on Windows 11, where some strategies were presented. For example, there will be no quarter for systems that do not meet the hardware requirements – tricks to get around the installation hurdles are not supposed to exist. In addition, some information about the topic of app updates was revealed – so they don’t have to be updated via the store. Here is a brief overview of these topics, enriched with my thoughts on sustainability and Microsoft Teams as a Trojan horse for the IT solutions of the coming years.
Posted in Windows
Tagged Windows 11
[German]Quick note for administrators who use the MBAM agent to escrow BitLocker recovery keys. This may result in excessive policy generation in Configuration Manager version 2103. Microsoft has now provided a hotfix to address this issue.
[German]Quick announcement for administrators in the corporate environment. As of July 26, 2021, Microsoft has announced the availability of the Security Baseline for Microsoft Edge version 92 (see the Techcommunity post Security baseline for Microsoft Edge v92). In the new version, 3 settings have been added to the policies and one setting has been removed. The package can be downloaded from the Download Center as Security Compliance Toolkit. (via)
[German]Apple released iOS 14.7.1 and macOS 11.5.1 on July 26, 2021. These are updates that fix bugs and especially security vulnerabilities. One vulnerability is already being exploited for attacks practically in the wild.
[German]Every Windows system is vulnerable to a specific NTLM relay attack that could allow attackers to escalate privileges from user to domain admin. This vulnerability has a status of “not being fixed” and was the subject of the PetitPotam approach I addressed over the weekend. Now Antonio Cocomazzi has pointed out the vulnerability called RemotePotato0. This uses the Windows RPC protocol for privilege escalation.
The update of the Edge browser to version 92.0.902.55 on July 22, 2021 does close various vulnerabilities. However, users report that this Edge version causes freezes when opening PDF files (see Microsoft Edge 92.0.902.55: Fixes vulnerabilities, causes freezes in PDFs).
[German]The Windows 10 security updates released on July 13, 2021 for the regular patchday (see Patchday: Windows 10 Updates (July 13, 2021)) may cause printing issues in certain scenarios. Printing and scanning can fail if these devices use smart card authentication (PIV). Microsoft has since confirmed this bug and published a separate support post about it.
U.S. manufacturer Kaseya was the victim of a supply chain attack, and as a result, systems belonging to about 1,500 customers were encrypted with ransomware. Kaseya said this week that it has a universal decryptor to decrypt customer files. Affected parties may contact sales, it said. Now there are reports that Sales is not responding, and if contact is made, Kaseya is requiring victims to sign a confidentiality agreement before the data is decrypted. I’ve added the info in the post Kaseya received universal decryption tool after ransomware attack.
Posted in Security