[German]As of October 24, 2023, Mozilla developers have released the new Firefox 119 as well as the Firefox 115.4 ESR maintenance update. Firefox 119 is a new development branch. Here is a brief overview of the updates in question along with the fixes and what's new. Thanks to the readers for the tips.
Continue reading
[German]On October 21, yes, the hack of the Okta support platform had become known (see Okta support system hacked with stolen credentials). Two days later, on Oct. 23, 2023, 1Password issued a terse announcement that it had already detected suspicious activity on its own Okta instance used to manage employee-facing applications on Sept. 29, 2023. According to the vendor, this activity was immediately terminated and an investigation was launched. After completing the investigation, 1Password concluded that no 1Password user data was accessed. No user data or other sensitive systems, employee or user, were compromised, it said. Bleeping Computer has posted some additionsl information.
[German]Following the devastating hack of Microsoft Cloud (Exchange Online and Outlook accounts were compromised by the Storm-0588 group), the vendor had already released its previously paid access to Microsoft Purview audit logs for free use by customers. Then, effective Oct. 18, 2023, Microsoft announced expanded audit logging and retention in Microsoft Purview. This is intended to provide greater security transparency, according to the vendor.
[German]Microsoft has come up with a new twist for Windows users who dare to search for a Google Chrome download in the Edge browser. Instead of simply displaying the download pages, those interested in Chrome are shown a rather pointless survey (poll) to fill out.
[German]US vendor Cisco has publicly disclosed another 0-day vulnerability (CVE-2023-20273) in IOS XE as of October 20, 2023. This vulnerability is already being exploited in the wild to compromise systems. The vendor plans to provide fixes for the CVE-2023-20198 and CVE-2023-20273 vulnerabilities probably on October 22, 2023 (US time). A vulnerability made public on Oct. 16, 2023, led to tens of thousands of infections. Now the number of "discoverable, infected" systems suddenly dropping to a few hundred.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]As of October 10, 2023, Microsoft has indeed released security updates (SU) for on-premises Exchange Server 2016 / 2019. These pick up the August 2023 patches, but may cause problems with Exchange installations. For example, there may be installation error 0x80070534. Microsoft has also confirmed that users cannot change expired passwords in OWA in Exchange installations with multiple forests. Furthermore, I have a message that a "FIP-FS Scan Engine failed to load" occurs on Exchange Server 2019 after the update installation. Below is a summary of the issues.
[German] Provider 23andMe (creates analyses of the human genome) has suffered a cyber incident in which millions of customer data were stolen. At first, the provider denied everything. A few days ago, one million records of Ashkenazi Jews were published in an underground forum. Now more captured data of 4.1 million customers from Germany and the UK has been published.
VMware has released an update for its virtualization solutions VMware Player and Workstation to version 17.5 this week. neowin.net describes here some improvements and fixes of the new version. VMware has released the security advisory MSA-2023-0021 (Aria, CVE-2023-34051, CVE-2023-34052, 8.1) and VMSA-2023-0022 (CVE-2023-34044, CVE-2023-34045, CVE-2023-34046, 6.6-7.1) describing update of VMware Player / Workstation 17.5, as well as to Fusion 13.5, to close several vulnerabilities in the products.
As of October 17, 2023 VMMap v3.4 has been released in Sysinternals Tools. VMMap is a utility for analyzing virtual and physical process memory on Windows.
In addition to classic email phishing and SMS phishing on mobile devices, the misuse of QR codes, which are used to lure users to obscure sites, is also spreading. If QR codes come to the victim via e-mails, it is called quishing. This is an increasing problem, as I have noticed. Here is some information about a situation that a reader brought to my attention this week.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
