Future Windows Server versions will only be available as LTSC

Windows[German]Microsoft is cutting Windows Server channels and eliminating the semi-annual upgrade channels in the future. Starting with the upcoming Windows Server 2022, there will only be so-called LTSC variants every two to three years, which will get five years of mainstream support and another five years of extended support with security updates.. Continue reading

Posted in Windows | Tagged | Leave a comment

Advertising

Out-of-band updates fixes Windows printing issues (July 27, 2021)

Update[German]Microsoft has released unscheduled updates for Windows 10 version 1809, as well as Windows 7 SP1 (with ESU) and Windows Server 2008 SP2 (with ESU), effective July 27, 2021. These special updates are intended to fix the printing issue associated with SmartCard authentication. Here is a quick overview of the situation.

Continue reading

Posted in issue, Update, Windows | Tagged , , , | Leave a comment

Windows 11: Microsoft AMA , the HW requirements, app updates and other insights

Windows[German]Microsoft recently held an “Ask me anything” (AMA) session on Windows 11, where some strategies were presented. For example, there will be no quarter for systems that do not meet the hardware requirements – tricks to get around the installation hurdles are not supposed to exist. In addition, some information about the topic of app updates was revealed – so they don’t have to be updated via the store. Here is a brief overview of these topics, enriched with my thoughts on sustainability and Microsoft Teams as a Trojan horse for the IT solutions of the coming years.

Continue reading

Posted in Windows | Tagged | Leave a comment

Hotfix for MBAM bitlocker recovery key issue in ConfigMgr 2013

Windows[German]Quick note for administrators who use the MBAM agent to escrow BitLocker recovery keys. This may result in excessive policy generation in Configuration Manager version 2103. Microsoft has now provided a hotfix to address this issue.

Continue reading

Posted in issue, Software, Windows | Tagged , , , | Leave a comment

Microsoft Edge 92: Security Baseline available

Edge[German]Quick announcement for administrators in the corporate environment. As of July 26, 2021, Microsoft has announced the availability of the Security Baseline for Microsoft Edge version 92 (see the Techcommunity post Security baseline for Microsoft Edge v92). In the new version, 3 settings have been added to the policies and one setting has been removed. The package can be downloaded from the Download Center as Security Compliance Toolkit. (via)

Posted in browser, Security | Tagged , | Leave a comment

Advertising

iOS 14.7.1 and macOS 11.5.1

[German]Apple released iOS 14.7.1 and macOS 11.5.1 on July 26, 2021. These are updates that fix bugs and especially security vulnerabilities. One vulnerability is already being exploited for attacks practically in the wild.

Continue reading

Posted in Software, Update | Tagged , , | Leave a comment

RemotePotato0: Privilege Escalation Vulnerability in Windows RPC Protocol

Windows[German]Every Windows system is vulnerable to a specific NTLM relay attack that could allow attackers to escalate privileges from user to domain admin. This vulnerability has a status of “not being fixed” and was the subject of the PetitPotam approach I addressed over the weekend. Now Antonio Cocomazzi  has pointed out the vulnerability called RemotePotato0. This uses the Windows RPC protocol for privilege escalation.

Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

Microsoft Edge 92.0.902.55 causes PDF freezes

The update of the Edge browser to version 92.0.902.55 on July 22, 2021 does close various vulnerabilities. However, users report that this Edge version causes freezes when opening PDF files (see Microsoft Edge 92.0.902.55: Fixes vulnerabilities, causes freezes in PDFs).

Posted in browser, issue | Tagged , , | Leave a comment
Advertising

Windows 10: July 2021 update may cause printing issues with SmartCard authentication

Windows[German]The Windows 10 security updates released on July 13, 2021 for the regular patchday (see Patchday: Windows 10 Updates (July 13, 2021)) may cause printing issues in certain scenarios. Printing and scanning can fail if these devices use smart card authentication (PIV). Microsoft has since confirmed this bug and published a separate support post about it.

Continue reading

Posted in issue, Update, Windows | Tagged , , , | 2 Comments

Kaseya allegedly demands NDA against decryption tool

Sicherheit (Pexels, allgemeine Nutzung)U.S. manufacturer Kaseya was the victim of a supply chain attack, and as a result, systems belonging to about 1,500 customers were encrypted with ransomware. Kaseya said this week that it has a universal decryptor to decrypt customer files. Affected parties may contact sales, it said. Now there are reports that Sales is not responding, and if contact is made, Kaseya is requiring victims to sign a confidentiality agreement before the data is decrypted. I’ve added the info in the post Kaseya received universal decryption tool after ransomware attack.

Posted in Security | Tagged | Leave a comment