[German]The developers of Thunderbird have released another update of the email client to version 115.2.3 on September 20, 2023. It is an update which is supposed to fix numerous bugs, but does not contain any new features or security fixes.
[German]Short notice for users and administrators of Trend Micro security products Apex One and Worry-Free Business Security on Windows. There is a critical vulnerability (CVE-2023-41179) in the products that is already being exploited in the wild. However, the manufacturer offers updates for the affected products that eliminate this critical vulnerability.
[German]Note to Exchange Online administrators. Microsoft has just announced in a blog post that it will discontinue Exchange Web Services (EWS) on October 1, 2026. All communication will then have to be done via Microsoft Graph from that date. So there's still two years to make this transition in the enterprise.
[German]Microsoft first updated the Edge browser in the stable channel to version 117.0.2045.35 on September 19, 2023, and then to version 117.0.2045.36 shortly thereafter. The release notes here and here respectively state, "Fixed various bugs and performance issues for the stable version." In addition, there is the Webview2 Runtime (thanks to Robert for pointing this out, given the update cadence, it's hard to follow).
[German]US cybersecurity agency CISA is currently warning of attacks that target the vulnerabilities in Microsoft Word and Adobe products that were patched in September 2023. For the September 2023 patchday, Microsoft had indeed released security updates for various products that close 59 vulnerabilities. This includes two critical vulnerabilities that are actively exploited by attackers.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Next data leak and security incident at Microsoft: Security researchers at Wiz have stumbled upon 38 terabytes of private internal data stored on an Azure Cloud Store instance via a public Microsoft AI GitHub repository. Access was enabled by a misconfigured SAS token, they say. This gigantic data leak also contained two Microsoft employees' backups of secret keys and credentials, as well as more than 30,000 internal Microsoft Teams messages.
Google has released updates to the Google Chrome browser 117 in the stable channel for Mac, Linux and Windows on September 14, 2023. The announcement can be found on the Google blog. The stable channel has been updated to version 117.0.5938.88 for macOS and Linux. For Windows, the update updates the browser to version 17.0.5938.88/.89. According to the change log, only bugs were fixed (e.g. "Fix new badges feature to show when companion is disabled" and a bug when loading priority policies from the Windows registry). Thanks to Robert for the hint.
[German]The Irish Data Protection Commission (DPC) issued its final decision regarding an investigation into TikTok Technology Limited (TTL) on September 1, 2023. The investigation examined whether the platform had complied with its obligations regarding the processing of children's personal data. A fine of 345 million euros was imposed on TikTok for violating these obligations.
[German]New cars, purchased in the US, are a privacy nightmare. Vendors reserves with the privacy consent the permission to collect any data on the cars. It is not enough to use cameras, sensors or telematics systems, as well as the coupled mobile devices to capture and record all activities of the drivers or owners, or to forward them to the manufacturers. Even information on ethnicity, weight, genetics or sexual activity may be included and could be collected in a variety of ways.
[German]Brief warning for users of the Steam platform. A reader has alerted me about a campaign causing a wave of scams that is currently running and operates with fake accounts. Inquiries from supposed friends offer participation in a sweepstakes. If you fall for this, you will probably end up on a page where Steam login data is requested and then stolen by cybercriminals.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
