Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
WinRAR Code Execution Vulnerability CVE-2023-40477
[German]I don't know how common WinRAR is among the blog readers. WiNRAR developers have fixed a critical code execution vulnerability (CVE-2023-40477) in the software. It is enough to open a compromised archive file to allow attackers to execute arbitrary code … Continue reading
Data leak at NXP Semiconductors
[German]There has been a data leak at NXP Semiconductors, a manufacturer of electronic semiconductor components. The Dutch company is the 2006 spin-off of the semiconductor division of Royal Philips. Following the acquisition of Freescale, NXP is Europe's largest semiconductor manufacturer … Continue reading
PowerHell: Attention, unfixed vulnerabilities in the PowerShell gallery
[German]Security researchers from Aqua Security came across several vulnerabilities in Microsoft's PowerShell gallery some time ago. The vulnerabilities were then reported to Redmond, where unsuccessful attempts were made to fix the bugs with patches. Now the security researchers have gone … Continue reading
CISA warns of Citrix ShareFile RCE vulnerability CVE-2023-24489
The US security agency CISA warns about the Citrix ShareFile RCE vulnerability CVE-2023-24489 (CVSS score 9.1) and has added it to its vulnerability list. Citrix ShareFile is a widely used cloud-based file sharing application. The vulnerability being attacked in the … Continue reading
Defender for Endpoint: URL filtering broken?
[German]Quick question to my blog readers. I have received a report that URL filtering.in Defender for Endpoint is broken. In this context, it would be interesting to know if there are other people affected or if the reader is an … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Microsoft's Storm-0558 cloud hack: US senator among the victims
[German]It's been a few days since it became known that members of the suspected Chinese cyber group Storm-0558 managed to break into the Exchange Online and private outlook.com accounts of 25 organizations. Now a US senator came forward with the … Continue reading
PingCastle 3.1: Active Directory and AzureAD Security Health Check
Brief note for people who are concerned with the topic of security under Active Directory and AzureAD (today called EntraID). Vincent Le Toux has released his PingCastle version 3.1 at the beginning of August 2023. PingCastle can be used to … Continue reading
Updates: Internet Explorer; .NET framework with installation issues (Aug. 8, 2023)
[German]As of August 8, 2023, Microsoft has patched other software in addition to security updates for Windows and Office. There is a security update for Internet Explorer for various Windows Server versions. And there are also security updates for the … Continue reading
Posted in issue, Security, Software, Update
Tagged .NET Framework, Internet Explorer, Patchday 8.2023, Security, Update
Leave a comment
Workaround for Exchange August 2023 security update install issue
[German]Addendum from the August 2023 patchday, which caused issues for administrators of Microsoft Exchange 2016/2019. On non-English systems the installation failed and the Exchange server was partially dead afterwards. I had warned here my German users in my articles and … Continue reading
Microsoft's Office Defense in Depth Update ADV230003 (August 2023) breaks RCE Attacks via CVE-2023-36884
[German]Microsoft has released security updates for Windows and Office as of August 8, 2023. For Microsoft Office, there were security updates for the MSI versions for both version 2013 and Office 2016. The C2R variants of Office 2016 and 2019 … Continue reading