Microsoft AI event on September 21, 2023 in New York

On September 21, 2023, Microsoft will hold an event in New York. I had not addressed the topic here in the blog, but has read first speculations of other media what will be shown at the event.

Continue reading

Posted in General | Tagged | Leave a comment

WinRAR vulnerability CVE-2023-40477: Also third-party software affected?

Sicherheit (Pexels, allgemeine Nutzung)In my blog post WinRAR Code Execution Vulnerability CVE-2023-40477 I had mentioned a vulnerability in WinRAR, which has been fixed with the update to WinRAR version 6.23. Andreas Marx from AV-Test recently pointed out that basically all software that uses WinRAR libraries is vulnerable in principle and needs to be updated to newer versions. I had added the information to the above blog post and pointed out that virus scanners and security software may use these outdated WinRAR libraries. So if necessary check the Windows system for the library files mentioned in the blog post. Addendum: According to the WinRAR developer the libraries are not affected by the vulnerability.

Posted in Security, Software, Windows | Tagged , , | Comments Off on WinRAR vulnerability CVE-2023-40477: Also third-party software affected?

Edge 116: Mysterious files bgaupdate.exe and bgaupsell.exe

Edge[German]I received reports from users, that the Microsoft Edge browser has been installing the mysterious files bgaupdate.exe and bgaupsell.exe for quite some time. While these were not functional until now, something seems to have changed with Edge 116. Bloat- and malware is mentioned in hints from readers. I'll try to gather the information I have on this.

Continue reading

Posted in General | 3 Comments

Palo Alto: Ivanti Endpoint Manager Mobile Vulnerabilities Readback (August 2023)

Sicherheit (Pexels, allgemeine Nutzung)[German]Vendor Ivanti has had to warn about critical vulnerabilities in its Endpoint Manager Mobile (EPMM) several times in recent weeks and issue security updates. The starting point for this flood of security reports was that Norway's government was hacked via Ivanti-Zero-Day. For several weeks now, companies around the world – a great many of them also in Germany, Austria and Switzerland – have been reporting cyberattacks by exploiting various vulnerabilities in Ivanti Endpoint Manager Mobile. Palo Alto Networks or its Unit 42 has now published a summary of the status.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Outlook: Body of accepted meetings is write only now; by design after Office August 2023 update

[German]Short information for administrators of Office installations with Microsoft Outlook. I received reports, that since installing August 2023 updates for Microsoft Outlook were installed, the so-called body text of appointments can only be changed by the organizer of the appointment. This is by design, and documented by Microsoft.

Continue reading

Posted in issue, Office, Software | Tagged , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...


Edge 116.0.1938.62 released, issues with ignored policies for users logged in to user account fixed?

Edge[German]Microsoft has updated the Edge browser to version 116.0.1938.62 as of August 25, 2023. It is a maintenance update that probably fixes an issue with ignored group policies when logging in to the user account and also fixes vulnerabilities.

Continue reading

Posted in browser, issue, Update, Windows | Tagged , , , | 1 Comment

Windows Defender Credential Guard: Root cause of Windows 11 22H2 RDP issues?

Windows[German]Since weeks, administrators have been complaining about problems with remote desktop connections that can occur on Windows 11 22H2. Microsoft announced in July 2023 that they are investigating the problem, and there is probably a workaround. Coincidentally, however, a blog reader has come forward and found the culprit for his RDP problems in his case. Windows Defender Credential Guard seems to be causing conflicts with RDP.

Continue reading

Posted in Security, Windows | Tagged , , | Leave a comment

Duolingo: Leak with 2.6 million user records, check for 'Have I been Pwned' possible

Sicherheit (Pexels, allgemeine Nutzung)[German]Vulnerabilities in the language learning app/platform API from Duolingo allows to scape user data. Now Troy Hunt has integrated a data set with information on 2.6 million Duolingo users into his platform 'Have I been Pwned'. And if I've noticed correctly, the vulnerabilities in the Duolingo API still haven't been fixed yet.

Continue reading

Posted in Security | Tagged , | Leave a comment

Windows 10/11: UNSUPPORTED_PROCESSOR error caused by preview updates (August 22, 2023)

Windows[German]The old recommendation not to install a month's preview updates immediatly has proven itself again in August 2023. The optional preview updates released on August 22, 2023 are supposed to fix numerous bugs and provide new group policies in Windows 11 for the update installation. But Microsoft had to admit that the updates cause an UNSUPPORTED_PROCESSOR BlueScreen on some machines. The updates were therefore withdrawn for some machines.

Continue reading

Posted in issue, Update, Windows | Tagged , , , | 6 Comments

FYI: Citrix ShareFile worldwide down (24, Aug. 2023)

Stop - PixabayBrief information for administrators who are responsible for Citrix ShareFile. David M. just emailed me about a worldwide outage (thanks for that). He noted that this afternoon (8/24/2023) the connection to Citrix Sharefile became slower and slower. Then the connection became more unreliable until finally the communication completely broke down, he writes. Since about 09:33 EDT there is also a corresponding message on the official ShareFile® Status Page: "Investigating: Users are currently unable to authenticate into ShareFile. Engineering is investigating." and meanwhile "Identified – The issue has been identified and a fix is being implemented.". So should be up and running again soon.

Posted in Cloud, issue | Tagged , , | Leave a comment