Group Policy Analytics tool now generally available

Posted on 2023-09-06 by guenni

Windows[German]Tip for administrators of Windows systems who work with Group Policies or want to switch from GPOs to Microsoft Intune and take over the GPO settings. Microsoft has just announced the general availability of its "Group Policy Analytics tool". Group Policy Analytics helps import GPOs in use, analyze settings through shareable reports, and migrate GPO settings to Intune.

Continue reading

Posted in Software, Windows | Tagged , | Leave a comment
Advertising

Attention: Transcription APIs from teams will be chargeable from Sept. 1, 2023 onwards

Posted on 2023-09-06 by guenni

Stop - Pixabay[German]One more small warning, even if it's currently more likely to affect developers who use Microsoft's cloud stuff via API. There is a preview of the Teams transcription APIs, which can be used to create meeting transcripts and recordings using Graph APIs. Actually a fine thing, some people will interject, even if the topic of Teams recordings is its own building site and subject to co-determination if necessary. But another trap beckons, which I want to point out in this blog post. Microsoft has just announced that there will be a charge for using Teams' transcription APIs, even in the preview. That can then add up to quite a bit of money.

Continue reading

Posted in Cloud, General | Tagged , | Leave a comment

Security update to FRITZ!OS 7.57 (7.31) closes serious vulnerability

Posted on 2023-09-05 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]The Berlin-based German manufacturer of routers, AVM, has released its FRITZ.OS version 7.57 for eligible FRITZ!Box models on September 4, 2023. AVM only writes that this firmware update is a necessary stability and security update. It is therefore unclear which vulnerabilities has been fixed. The manufacturer intends to publish details at a later date, which might be related to the fact that not all FRITZ!Box models have been updated to the new firmware yet. Rumors in the internet says that a serious vulnerability has been deteced in FRITZ!Box 7590 models and attacks in the wild are observed. I have compiled what the Internet believes to know.

Continue reading

Posted in devices, Security, Update | Tagged , , | Leave a comment

Windows Defender Application Control (WDAC) becomes Application Control for Business

Posted on 2023-09-05 by guenni

WindowsSmall note to administrators in the Windows environment. As far as I know, it hasn't been officially announced yet, but Microsoft is working on renaming its Windows Defender Application Control (WDAC). If not everything is wrong, the function will soon be called Application Control for Business. At least that's according to Group Policy designations distributed with Windows Insider Previews.

Continue reading

Posted in Security, Windows | Tagged , | 1 Comment

Windows: Microsoft reminds of coming TLS 1.0/1.1 deactivation

Posted on 2023-09-04 by guenni

Windows[German]It's a topic that has been addressed several times here on the blog: The days of using the TLS 1.0 and TLS 1.1 protocols to communicate with servers are coming to an end. The protocols are no longer considered secure and should no longer be used. Microsoft has again taken the opportunity on September 1, 2023 to inform administrators that the two protocols will be disabled "in the near future" under Windows "in upcoming operating system versions".

Continue reading

Posted in Security, Windows | Tagged , | Leave a comment
Advertising

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Vulnerabilities (CVE-2023-40481, CVE-2023-31102) in 7-ZIP; fixed in version 23.00 (August 2023)

Posted on 2023-09-03 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]A short update from the end of August 2023. Security researchers have found two vulnerabilities in the 7-Zip program, which is used to pack and unpack ZIP archive files. The vulnerabilities CVE-2023-40481 and CVE-2023-31102 are classified as high-risk from a security perspective. Attackers could possibly elevate privileges.

Continue reading

Posted in Security, Software, Update | Tagged , , | Leave a comment
Advertising

Decryptor for Key Group Ransomware Available

Posted on 2023-09-03 by guenni

Sicherheit (Pexels, allgemeine Nutzung)Security researchers at ElectricIQ have discovered a vulnerability in the routines of the Key Group ransomware that allowed decryption tools to recover encrypted files. The decryption tool only works on a specific version of the ransomware developed around Aug. 3, the vendor said. The Python script can be found at the end of this article, which also includes some details about the ransomware. The Register published this article on the subject in late August 2023.

Posted in Security | Tagged | Leave a comment

Firmware updates for Surface Laptop 4 and Surface Duo

Posted on 2023-09-03 by guenni

Microsoft has released a firmware update for its Surface Laptop 4 on August 31, 2023, which is supposed to fix security issues and a charging problem. In addition, there is probably the (presumably) last firmware update for the Surface Duo smartphone.

Continue reading

Posted in devices, Update | Tagged , , | Leave a comment
Advertising

MalDoc: Malicious Word files in PDF documents bypass malware detection

Posted on 2023-09-03 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Another small addendum from this week: The Japanese CERT warns of a new technique used by cyber attackers who take malicious Word files and embed them in PDF documents. This "packaging" is intended to bypass the detection of the malicious Office documents by security software. JPCERT/CC first observed such attack techniques, known as MalDoc, via infected PDF files in July 2023.

Continue reading

Posted in Office, Security, Software | Tagged , , | 1 Comment

Deprecated Windows features: WordPad to disappear from Windows after 28 years

Posted on 2023-09-02 by guenni

Windows[German]On September 1, 2023, Microsoft once again announced which functions they want to part with in future Windows versions. In the new list, some functions are marked as 'deprecated'. So the security protocols for connections, TLS 1.0 and 1.1, are to die now finally. But also WordPad, which has been delivered with Windows for 28 years and is hardly used, is going to the old age and will disappear in the future.

Continue reading

Posted in Software, Windows | Tagged , | Leave a comment