Data leak: Microsoft AI researchers lose 38 TBytes of internal data via GitHub/Azure cloud storage

[German]Next data leak and security incident at Microsoft: Security researchers at Wiz have stumbled upon 38 terabytes of private internal data stored on an Azure Cloud Store instance via a public Microsoft AI GitHub repository. Access was enabled by a misconfigured SAS token, they say. This gigantic data leak also contained two Microsoft employees' backups of secret keys and credentials, as well as more than 30,000 internal Microsoft Teams messages.

Continue reading

Posted in Cloud, Security | Tagged , , | Leave a comment

Google Chrome 117.0.5938.88/.89

ChromeGoogle has released updates to the Google Chrome browser 117 in the stable channel for Mac, Linux and Windows on September 14, 2023. The announcement can be found on the Google blog. The stable channel has been updated to version 117.0.5938.88 for macOS and Linux. For Windows, the update updates the browser to version 17.0.5938.88/.89. According to the change log, only bugs were fixed (e.g. "Fix new badges feature to show when companion is disabled" and a bug when loading priority policies from the Windows registry). Thanks to Robert for the hint.

Posted in browser, Update | Tagged | Leave a comment

TikTok gets fined 345 million by Irish data protection authority

Paragraph[German]The Irish Data Protection Commission (DPC) issued its final decision regarding an investigation into TikTok Technology Limited (TTL) on September 1, 2023. The investigation examined whether the platform had complied with its obligations regarding the processing of children's personal data. A fine of 345 million euros was imposed on TikTok for violating these obligations.

Continue reading

Posted in General | Tagged , | Leave a comment

New cars as a privacy night mare; Mozilla investigates situation in the U.S.

Stop - Pixabay[German]New cars, purchased in the US, are a privacy nightmare. Vendors reserves with the privacy consent the permission to collect any data on the cars. It is not enough to use cameras, sensors or telematics systems, as well as the coupled mobile devices to capture and record all activities of the drivers or owners, or to forward them to the manufacturers. Even information on ethnicity, weight, genetics or sexual activity may be included and could be collected in a variety of ways.

Continue reading

Posted in Security | Tagged , , | Leave a comment

Warning about Steam fake accounts and scam methods

Sicherheit (Pexels, allgemeine Nutzung)[German]Brief warning for users of the Steam platform. A reader has alerted me about a campaign causing a wave of scams that is currently running and operates with fake accounts. Inquiries from supposed friends offer participation in a sweepstakes. If you fall for this, you will probably end up on a page where Steam login data is requested and then stolen by cybercriminals.

Continue reading

Posted in Security | Tagged | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...


Edge 117.0.2045.31 and 109.0.1518.140 released (Sept. 15, 2023)

Edge[German]Microsoft has updated the Edge browser in the stable channel to version 117.0.2045.31 as of September 15, 2023 (thanks to readers for the tips). This branch brings some new features to Edge for Business. At the same time, Edge 109.0.1518.140 was released on this date to close the critical CVE-2023-4863 vulnerability in older systems running Windows 7 SP1- and Windows Server 2012 R2.

Continue reading

Posted in browser, Security, Update | Tagged , , | 1 Comment

WSUS to offer Edge V 109 as an update (Sept. 14, 2023)

Edge[German]Brief note and question for the administrators among the readership. I just received a reader note that Microsoft has received an update of Edge Build 109.0.1518.140 on WSUS and that there may be conflicts because more recent versions are overwritten. There doesn't seem to be a changelog yet – but I have a suspicion.

Continue reading

Posted in issue, Update, Windows | Tagged , | Leave a comment

Office 2016 Update KB5002457 causes appwiz.cp-/mso.dll errors

[German]Microsoft has also released updates for Office 2016 on patchday, September 12, 2023, that are supposed to eliminate vulnerabilities. I got now reports, the Office 2016 update KB5002457 is causing issues and Office can no longer be used. The only solution is to uninstall this update.

Continue reading

Posted in issue, Office | Tagged , , | 10 Comments

Patchday: Microsoft Office Updates (September 12, 2023)

Update[German]On September 12, 2023 (second Tuesday of the month, Microsoft Patchday), Microsoft released several security-related updates for still-supported Microsoft Office versions and other products. With the April 2023 patchday, support for Office 2013 ended – but vulnerabilities were still closed in August. Below is an overview of the available updates. Continue reading

Posted in Office, Security, Update | Tagged , , , | Leave a comment

Patchday: Windows 7/Server 2008 R2; Server 2012 R2 Updates (September 12, 2023)

Windows[German]As of September 12, 2023, various security updates have been released for Windows Server 2008 R2 (in its 4th ESU year) and for Windows Server 2012/R2 (the updates may still install on Windows 7 SP1). Here is an overview of these updates for Windows Server 2008 R2 and Windows Server 2012/R2.

Continue reading

Posted in Security, Update, Windows | Tagged , , , | Leave a comment