Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Windows
Windows 11: Microsoft AMA , the HW requirements, app updates and other insights
[German]Microsoft recently held an "Ask me anything" (AMA) session on Windows 11, where some strategies were presented. For example, there will be no quarter for systems that do not meet the hardware requirements – tricks to get around the installation … Continue reading
Hotfix for MBAM bitlocker recovery key issue in ConfigMgr 2013
[German]Quick note for administrators who use the MBAM agent to escrow BitLocker recovery keys. This may result in excessive policy generation in Configuration Manager version 2103. Microsoft has now provided a hotfix to address this issue.
RemotePotato0: Privilege Escalation Vulnerability in Windows RPC Protocol
[German]Every Windows system is vulnerable to a specific NTLM relay attack that could allow attackers to escalate privileges from user to domain admin. This vulnerability has a status of "not being fixed" and was the subject of the PetitPotam approach … Continue reading
Windows 10: July 2021 update may cause printing issues with SmartCard authentication
[German]The Windows 10 security updates released on July 13, 2021 for the regular patchday (see Patchday: Windows 10 Updates (July 13, 2021)) may cause printing issues in certain scenarios. Printing and scanning can fail if these devices use smart card … Continue reading
Windows 11: Microsoft talks about the centered start menu
[German]Microsoft will change some design elements of the user interface in Windows 11. In addition to rounded window corners, the Start menu will also be seriously revised. Among other things, it is centered on the taskbar. Why they decided on … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Microsoft's mitigations of Windows PetitPotam NTLM relay attacks
[German]Yesterday, July 24, 2021, I had reported about a new attack vector called PetitPotam that can be used to take over Windows domain controllers by means of an NTLM relay attack (see my post PetitPotam attack allows Windows domain takeover). … Continue reading
Warning: Fake Windows 11 installer ships malware
[German]The curiosity about Windows 11 tempts some users to install pre-release versions on their computers. This is not a problem, as there are corresponding installation images directly from Microsoft for Windows Insiders as regular updates for Windows 10 machines. However, … Continue reading
LemonDuck and LemonCat malware boost activity
[German]LemonDuck and LemonCat is malware that both acts as a bot and mines crypto-money. LemonDuck can run on different platforms (Linux, Windows), threatening machines on corporate networks. According to Microsoft, this malware has been poorly documented so far, which is … Continue reading
PetitPotam attack allows Windows domain takeover
[German]There is a new attack vector called PetitPotam. This enables a threat actor to launch an NTLM relay attack on domain controllers. Ultimately, this can be used to take over entire domains. Since many organizations run domain controllers with Microsoft … Continue reading
News about Windows 10 vulnerability HiveNightmare
[German]Microsoft has revised the security advisory for the HiveNightmare vulnerability in Windows 10 (from version 1809) this week. I also have an analysis of the vulnerability from Sophos. And security researcher Kevin Beaumont had posted a proof-of-concept including description on … Continue reading