Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Windows
SearchNightmare: Windows 10 search-ms: URI Handler 0-day Exploit with Office 2019
[German]Following the discovery of the Follina vulnerability exploit (CVE-2022-30190) via the Windows ms-msdt protocol, this bastion is being "stormed". A hacker looked at the search-ms: URI handler in Windows 10 and developed an exploit similar to Follina. With the help … Continue reading
0Patch Micro patch against Follina vulnerability (CVE-2022-30190) in Windows
[German]The ACROS Security team around founder Mitja Kolsek has released a micro-patch to close the 0-click Microsoft Diagnostic Tool remote code vulnerability (CVE-2022-30190, Follina). The micro-patch is available for all customers with Windows and the 0patch agent free license. Here … Continue reading
Follina vulnerabilitiy (CVE-2022-30190): Status, Findings, Warnings & Attacks
[German]Since the weekend, a new Windows vulnerability CVE-2022-30190 in combination with Microsoft Office has been knows under the name Follina. In the meantime, the US CISA and also the BSI have warned about this vulnerability – while security researchers have … Continue reading
Microsoft 365: Activation issues with Windows Pro Enterprise (May 31, 2022)
[German]Quick question for administrators in the enterprise environment who manage Microsoft 365 licenses (volume licenses, E3/E5). Are you currently experiencing problems with Windows Pro systems no longer activating or losing activation? I have received indications from the readership regarding this … Continue reading
Follina: Attack via Word documents and ms-msdt protocol (CVE-2022-30190)
[German]A new attack vector has been known since the weekend that abuses the Microsoft Support Diagnostics Utility via the ms-msdt: protocol to download and abuse malicious Word documents (or Excel spreadsheets) from the web. Microsoft has since issued a support … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Windows 10 21H2: Explorer and taskbar issues due to "HP Development Company, L.P. – Extension – 8.10.5.34686"
[German]Brief info in the round of the owners of HP Windows PCs to a problem and immediately the question whether someone is affected. On these computers there are problems since a short time, the taskbar freezes under Windows, the Explorer … Continue reading
Reports about deactivated Windows 7 SP1 systems with ESU Bypass
[German]Brief question to the readers who still use Windows 7 SP1 and force installation of security updates with ESU Bypass v11. Do you seeing that the Windows 7 activation is getting lost since May 23, 2022? I got a couple … Continue reading
Windows 11 preview update KB5014019 breaks Trend Micro Ransomware Protection
[German]Preview update KB5014019, which Microsoft released for Windows 11 on May 24, 2022, is causing trouble for Trend Micro antivirus solutions. It clashes with Trend Micro's Ransomware Protection, the vendor acknowledged in an advisory.
Microsoft provides guidance on protecting against KrbRelayUp attacks in Windows domains
[German]KrbRelayUp attacks allow local privilege escalation in Windows domain environments where LDAP signing is not enforced. The default Active Directory settings are still insecure. However, Microsoft has now explained in a post how administrators can protect systems against KrbRelayUp attacks … Continue reading
Windows issue: Defender collides with FMAPOService
[German]In April 2022, I had reported issues with Windows Defender on Windows 10 (20H2). From extreme RAM usage to startup problems with Word or effects like black screen after user login has been observed/reported. Some issues were supposedly fixed by … Continue reading