Updates: VMware Player / Workstation 17.5; Fusion 13.5

Posted on 2023-10-22 by guenni

UpdateVMware has released an update for its virtualization solutions VMware Player and Workstation to version 17.5 this week. neowin.net describes here some improvements and fixes of the new version. VMware has released the security advisory MSA-2023-0021 (Aria, CVE-2023-34051, CVE-2023-34052, 8.1) and VMSA-2023-0022 (CVE-2023-34044, CVE-2023-34045, CVE-2023-34046, 6.6-7.1) describing update of VMware Player / Workstation 17.5, as well as to Fusion 13.5, to close several vulnerabilities in the products.

Posted in Security, Software, Update | Tagged , | Leave a comment

VMMap v3.4 released

Posted on 2023-10-22 by guenni

As of October 17, 2023 VMMap v3.4 has been released in Sysinternals Tools. VMMap is a utility for analyzing virtual and physical process memory on Windows.

Continue reading

Posted in Software | Tagged | Leave a comment

Quishing (QR code phishing), a growing problem

Posted on 2023-10-22 by guenni

Sicherheit (Pexels, allgemeine Nutzung)In addition to classic email phishing and SMS phishing on mobile devices, the misuse of QR codes, which are used to lure users to obscure sites, is also spreading. If QR codes come to the victim via e-mails, it is called quishing. This is an increasing problem, as I have noticed. Here is some information about a situation that a reader brought to my attention this week.

Continue reading

Posted in Security | Tagged | Leave a comment

Okta support system hacked with stolen credentials

Posted on 2023-10-21 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Okta's support system has been compromised with stolen credentials. Vendor Okta (provider of authentication services in the cloud) just admitted that. The attacker was able to view files uploaded by certain Okta customers as part of recent support cases. The vendor is now asking customers to renew their credentials.

Continue reading

Posted in Cloud, Security | Tagged , | Leave a comment

Over 32,000 Cisco components compromised via CVE-2023-20198 vulnerability

Posted on 2023-10-21 by guenni

Stop - Pixabay[German]Short note for users who have Cisco components with IOS XE in use and these components are accessible via the Internet. As of October 16, 2023, Cisco issued a security warning about the 0-day vulnerability CVE-2023-20198, which is unpatched so far but is being exploited in the wild to take over Cisco components. In the meantime, the vulnerability seems to be exploited in fierce waves of attacks and 10,000s of compromised systems can be assumed.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Edge 118.0.2088.61 (Oct. 20. 2023)

Posted on 2023-10-21 by guenni

EdgeMicrosoft has updated the Edge browser in the stable channel to version 118.0.2088.61 on October 20, 2023 (thanks to the reader for pointing this out). The release note here say: "Fixed various bugs and performance issues".

Posted in browser | Tagged | 1 Comment

MO682702: Microsoft 365 suite disruption, teams affected (10/20/2023)

Posted on 2023-10-21 by guenni

Stop - Pixabay[German]On October 20, 2023, Microsoft 365 suite experienced a disruption. Users in Europe were unable to access several Microsoft 365 services or experienced loss of functionality. In particular, MS Teams users were affected and were unable to send messages, receive call notifications, or experience delays. I got also reports that Exchange Online had been affected. And administrators may not have been able to assign Microsoft Teams numbers to user accounts. Addendum: It was was power failure.

Continue reading

Posted in Cloud, issue | Tagged , | Leave a comment

Microsoft fixes slow Outlook start and freeze bug; fix will be shipped in November 2023

Posted on 2023-10-21 by guenni

[German]Microsoft has addressed the problem that Outlook from Microsoft 365 takes a very long time to start and then sometimes hangs completely (freeze bug). If the application is closed and restarted, Outlook is opened directly. According to an announcement, the problem, which has been known since June 2023, has now been identified and fixed. The fix has already been published in the beta channel and will be rolled out in November 2023 via a Microsoft 365 update in the current channel.

Continue reading

Posted in issue, Office, Software, Update | Tagged , , | Leave a comment

Warning: WinRAR vulnerability CVE-2023-38831 is exploited by Chinese and Russian hackers

Posted on 2023-10-20 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Warning to users of the WinRAR archive program. Various state threat actors from Russia and China are trying to exploit a vulnerability in the WinRAR archiving tool for Windows. Attackers can execute arbitrary code when unpacking archives via the CVE-2023-38831 vulnerability. Affected by the vulnerability are WinRAR versions prior to 6.23 – currently WinRAR 6.24 is available.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Europol and other law enforcement seized RagnarLocker dark web site

Posted on 2023-10-20 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Europol and other law enforcement authorities like German BKA, the FBI and other international police agencies have seized the RagnarLocker ransomware gang's website, which was used to negotiate ransom payments with victims. It is hoped that this will cut off the ransomware group from its funding opportunity. Currently, there are no official announcements yet – they are expected to be released later today.

Continue reading

Posted in Security | Tagged | Leave a comment