Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Microsoft Azure: Urgently update PowerShell because of RCE vulnerability
[German]PowerShell versions 7.0 and 7.1 contain a remote code execution (RCE) vulnerability CVE-2021-26701, which has been assigned a CVSS score: 8.1. In a security alert, Microsoft is urging Azure customers to update PowerShell to version 7.0.6 or 7.1.3 in a … Continue reading
Out-of-Band Update closes Windows PrintNightmare Vulnerability (July 6, 2021)
[German]As of July 6, 2021, in addition to the regular Office updates (see Microsoft Office Patchday (July 6, 2021), Fix for Outlook Crashes), Microsoft has also released an emergency update to close the PrintNightmare vulnerability in the Windows Print Spooler. … Continue reading
Posted in Security, Update, Windows
Tagged Patchday 7.2021, Security, Update, Windows 10, Windows 7, Windows 8.1, Windows Server
6 Comments
Kaseya hack affects 1,500 companies worldwide
[German]The supply chain attack on Kaseya VSA affects approximately 1,500 companies worldwide, according to the manufacturer. This is according to a status update dated July 5, 2021. Meanwhile, the REvil group is demanding around $70 million in ransom to release … Continue reading
Cyber Polygon July 9, 2021
[German]Cyber Polygon is an annual cybersecurity event dedicated to cybersecurity topics. Taking place on July 9, 2021, Cyber Polygon this time is about simulating a cyber attack on the digital data streams that have skyrocketed during the coronavirus pandemic. In … Continue reading
Azure Virtual Desktop: A bug blocks WSUS update downloads (June 2021)
[German]Microsoft is investigating an issue that is preventing the download of security updates via Windows Server Update Services (WSUS) for Azure Virtual Desktops. Virtual Desktop instances are stuck at the May 2021 update level.
Posted in Cloud, Security, Update, Windows
Tagged Azure, Bug, Update, Virtual Desktops
Leave a comment
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Coop-Sweden closes 800 stores after Kaseya VSA supply chain attack by REvil gang
[German]Co-operative Swedish supermarket chain Coop was forced to close its 800 affiliated stores Friday evening and Saturday after a ransomware attack on a service provider responsible for billing and point-of-sale systems. The whole thing is directly related to the supply … Continue reading
REvil Ransomware attack at 200 Companies via Kaseya VSA and Management Service Provider (MSP)
[German]It is once again a nightmare come true for the IT landscape. The REvil ransomware group has succeeded in an attack via management service providers (MSPs). As a result, the servers of 200 companies were encrypted by the ransomware. It … Continue reading
0Patch Micropatches for PrintNightmare Vulnerability (CVE-2021-34527)
[German]There is a remote execution vulnerability in the Windows Printer Spooler service that primarily threatens Windows Server systems and is already being actively exploited. So far, Microsoft has only confirmed the vulnerability and provided information on how to mitigate the … Continue reading
Windows Print Spooler Vulnerability (CVE-2021-1675, PrintNightmare) Confirmed by MS; CISA Warns
[German]A brief update on the RCE vulnerability CVE-2021-1675 in the Windows Print Spooler known as PrintNightmare. US-CISA warns and recommends disabling the Print Spooler service on servers that are not used for printing. And as of July 1, 2021, Microsoft … Continue reading
PoC for Windows print spooler vulnerability public, high RCE risk
[German]Security researchers have published proof-of-concept (PoC) code for a remote code execution (REC) vulnerability in the Windows Print Spooler. The POC code was immediately deleted, but it is assumed that copies were pulled. The CVE-2021-1675 vulnerability allows an attacker to … Continue reading