Veeam Backup and other product updates (Dec. 2023)

Posted on 2023-12-06 by guenni

UpdateBrief information for users of Veeam products. Two readers have pointed out to me that the manufacturer has updated its product portfolio as of December 5, 2023 (thanks for that). The updates range from Veeam Backup & Replication to Veeam One and special solutions for Linux distributions.

Continue reading

Posted in Software, Update | Tagged , , | Leave a comment
Advertising

Windows 10: Surprise, there is an ESU support extension; also for private users

Posted on 2023-12-06 by guenni

Windows[German]What Microsoft has just announced comes as a surprise. After the official Windows 10 support ends in October 2025, Redmond will continue to provide paid security updates for a further three years. And an innovation that has never been seen before: Private users can also buy corresponding ESU licenses to be able to operate their Windows 10 systems until the end of 2028. Below I provide an overview of the situation and also outline alternatives.

Continue reading

Posted in Security, Update, Windows | Tagged , , , | 2 Comments

Troubleshooting Exchange Online transport rules – new cmdlet "Test Message"

Posted on 2023-12-06 by guenni

Exchange Logo[English]A little tip for Exchange Online administrators. What to do if issues occur when processing mails due to mail flow rules. The options for tenant administrators were previously limited, and Microsoft support often had to be called. Microsoft has now reacted and is trying to support administrators of Exchange Online tenants with a corresponding PowerShell cmdlet "Test Message" to diagnose the use of Exchange Transport Rules (ETRs).

Continue reading

Posted in Software | Tagged , | Leave a comment

Windows Server: Freezes (Crashes) by ESET Server Security 10.x (Dec. 2023)

Posted on 2023-12-05 by guenni

Windows[German]Short alert to clarify who is affected and to warn that something is up. At the moment there seem to be massive problems with Windows Server and especially with RDS Server when ESET Server Security is installed. The systems with Windows Server simply crash when the relevant ESET Server Security is installed. Here is some information as far as I have it.

Continue reading

Posted in issue, Security, Windows | Tagged , , | Leave a comment

Microsoft investigates HP Smart App installation and other related issues on Windows

Posted on 2023-12-05 by guenni

Windows[English]Since the end of November 2023, users have reported that an "HP Smart" printer app has suddenly been installed on their systems with Windows 10 and Windows 11. In addition, the entries for printers (icon, name) may have changed under Windows. Microsoft has now confirmed the facts as of December 4, 2023 and has set about analyzing the problem. Here is a brief overview of the status.

Continue reading

Posted in issue, Windows | Tagged , , | Leave a comment
Advertising

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

LogoFAIL: Critical vulnerabilities in the UEFI code

Posted on 2023-12-05 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]There are several critical vulnerabilities in the UEFI code of the firmware of various BIOS/UEFI implementations that could be used to inject malware into a system. The whole thing was already announced by the Binarly REsearch Team on November 29, 2023 under the term LogoFAIL.

Continue reading

Posted in devices, Security, Software | Tagged , , | 2 Comments
Advertising

Windows 11 23H2/22H2: Preview Update KB5032288 (December 04, 2023)

Posted on 2023-12-05 by guenni

Windows[German]Microsoft has released the optional cumulative (preview) update KB5032288 for Windows 11 version 22H2 and 23H2 on December 4, 2023. Looks like this preview update was not ready in November 2023 and is now available in December. The preview update brings a number of fixes and rolls out the preview for Copilot again.

Continue reading

Posted in Update, Windows | Tagged , | Leave a comment

Microsoft identifies Russian attacker exploiting CVE-2023-23397 in Outlook to access Exchange accounts

Posted on 2023-12-05 by guenni

Exchange Logo[German]CVE-2023-23397 is a vulnerability in Microsoft Outlook that could be exploited in conjunction with Microsoft Exchange servers, which was closed with security updates in March 2023. Microsoft has now identified an attacker based in Russia who is actively exploiting CVE-2023-23397 to gain unauthorized access to email accounts in Exchange servers. This can then be used for NTLM relay attacks against other services. The Russian attacker is referred to by Microsoft as Forest Blizzard (STRONTIUM, APT28, FANCYBEAR).

Continue reading

Posted in Security, Software | Tagged , , , | Leave a comment
Advertising

Recordings from Nullcon Security Conference (Goa 2023)

Posted on 2023-12-05 by guenni

Sicherheit (Pexels, allgemeine Nutzung)In September 2023 there was the "Nullcon Security Conference" in Goa. I was invited this year, but unfortunately (as with so many other conferences) I was unable to attend (which is better from an environmental point of view). But the organizers kept their word and informed me afterwards at the end of November 2023 that the recordings of the lectures are now online. Interested readers can find the slides of the presentations on this website.

Posted in Security | Tagged | Leave a comment

20,000 unpatched Exchange servers accessible via the Internet (Dec. 2023)

Posted on 2023-12-04 by guenni

Exchange Logo[German]Looks like we're heading for the next cyberattack disaster. Network scans by security researchers have found around 20,000 Microsoft Exchange servers that are accessible via the internet and vulnerable to remote code attacks. The Exchange servers are located in Asia, Europe and the USA and can no longer be patched as they have reached the end of their life cycle and have fallen out of support. A worthwhile target for cyber attackers, who can no longer keep up as quickly as security gaps grow on the Internet.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment