Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Microsoft Defender automatically mitigates CVE-2021-26855 on Exchange Server
[German]Microsoft is taking the next step in securing on-premises Exchange installations. Microsoft Defender not only detects infections of a system as a result of the ProxyLogon vulnerabilities. The virus scanner can also automatically detect a vulnerable system and closes the … Continue reading
Exchange ProxyLogon News: Patch status, new PoC and new findings (03/18/2021)
[German]Regarding the Exchange ProxyLogon vulnerabilities and the mass hack of Exchange Server systems, there is a publicly available proof of concept (PoC), so new attacks are to be expected. Patching and securing is progressing slowly. Microsoft's testing scripts should be … Continue reading
Windows 10 20H2 activates telemetry despite O&O Shutup 10 settings
[German]Many users trust on O&O Shutup to turn off telemetry data collection under Windows 10. I've now received a user report that a disabled telemetry data collection is automatically reactivated under Windows 10 – despite O&O Shutup 10 settings. Other … Continue reading
Security update for Exchange Server 2013 SP1; CUs for Exchange 2019 and 2016 (03/16/2021)
[German]Microsoft released a security advisory to revise its outdated updates for older CUs for on-premises Microsoft Exchange Servers (which have already fallen out of support). Specifically, Microsoft has released a security update for the out-of-support Microsoft Exchange Server 2013 Service … Continue reading
Microsoft Exchange (On-Premises) one-click Mitigation Tool (EOMT) released
[German]Microsoft has released its onclick Microsoft Exchange (On-Premises) Mitigation Tool (EOMT) as of March 15, 2021. The tool is intended to provide a one-click solution to mitigate the CVE-2021-26855 chess vulnerability on on-premises Exchange Server installations and is primarily intended … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
ProxyLogon hack: Administrator's Repository for affected Exchange systems
[German]What can I do as an Exchange Server administrator in light of the ongoing waves of attacks on ProxyLogon vulnerabilities? What do I need to be aware of? How do I find out if instances are already compromised? The repository … Continue reading
Chrome News: Version 89.0.4389.90 fixes 0-day vulnerability, new update cycle
[German]Google developers have updated the Chrome browser to version 89.0.4389.90 as of March 12, 20201in the desktop version for Linux, macOS and Windows. This security update fixes a 0-day vulnerability in the older browser versions. And the browser is supposed … Continue reading
Microsoft provides workaround for Windows 10 patchday printer issue (BSOD)
[German]Microsoft confirmed last Friday (US time) the BSOD issues triggered with the March 2021 patchday in Windows that systems with certain printers crash via BlueScreen, with more details, and a workaround was suggested.
Posted in issue, Security, Windows
Tagged fix, issue, Patchday 3.2021, Update, Windows 10
2 Comments
Was there a leak at Microsoft in the Exchange mass hack?
[German]The first wave of mass hacking of vulnerable Exchange servers before the release of patches raises questions. Especially since the exploit code used was very similar to a PoC that Microsoft had distributed to partners a week earlier. Microsoft is … Continue reading
Security: Spectre PoC and test in Chrome 88 browser
[German]Google published a proof of concept (PoC) this week on how the Specte vulnerability can be exploited via JavaScript in the Chrome browser. Hence, some information and a little gimmick on how to test it.