[German]Microsoft had to admit on begin of July 2023 that suspected Chinese hackers from the Storm-0558 group were able to forge security tokens using a stolen private MSA key. Then then gain broad access to Microsoft cloud services, as Wiz now revealed. So it's not just about the ability to access accounts at Exchange Online and Outlook.com, which Microsoft had admitted recently.
[German]Another "shortie for the weekend", since I haven't considered this topic yet. Microsoft provides a set of group policies (GPOs) for managing/controlling updates in Windows. The whole thing is documented on the Policy CSP for Updates page. I had already provided a reference to the site in the post Windows Update CSP page refreshed (Jan. 2023). Currently, however, there seem to be problems with the content of the page, so the information provided there is not correct.
[German]The developers of Thunderbird have already released another update of the email client to version 115.0.1 on July 20, 2023. It is a bug fix update, which should eliminate errors and a vulnerability.
[German]Besides the issue, that Outlook constantly asking to open previous session windows on startup (see Outlook startup asks for "re-open windows", options to disable missing), there may be another bug that has made its way into the Click-2-Run versions of Office 365 via update. A blog reader informed me that in his environment new Outlook appointments automatically become Teams meetings. Addendum: There is now a fix and a workaround.
[German]The U.S. cybersecurity agency CISA is warning administrators of Citrix NetScaler ADC installations. Threat actors have begun exploiting the NetScaler ADC vulnerability CVE-2023-3519, disclosed a few days ago, to implant webshells. Administrators should look for signs of compromise. Kompromittierung suchen.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]As part of this week's Inspire 2023 partner conference, Microsoft also unveiled two new data backup products. With Microsoft365Backup and Microsoft 365 Archive, administrators should be able to back up data from Microsoft products such as OneDrive, SharePoint or Exchange in the Microsoft Cloud.
[German]It has already been whispered about for a week: The EU Competition Commission is investigating an antitrust complaint against Microsoft because of the Teams bundling with Office 365. On the one hand, competitor Slack had complained about Microsoft to the EU Commission. On the other hand, German provider Alfaview from Karlsruhe is also said to have complained yesterday.
[German]Microsoft's July 11, 2023 security update KB5028166 seems to be turning into a problem bear. I have already been contacted by two pages from the readership, who report hints of different problems with third-party security solutions, NAS drives or similar. So I'm picking up new issues, since I hadn't cover it in part I.
Brief information for people who use Foxit PDF Reader and/or PDF Editor. There are vulnerabilities in older versions which will be fixed by a security update to version 12.1.3.15356 (thanks to the reader for reminding me). Details can be found in this Foxit security advisory. The colleagues from deskmodder.de have collected the relevant links – also for download – here. Does anyone from the readership use these products?
[German]On Patchday, July 11, 2023, Microsoft released a bunch of security updates for Windows, Office and other products. In addition, a vulnerability in the HTML component of IE became known, which could allow an RCE attack on Office and Windows with system takeover. There is no patch for this, only countermeasures for protection. And some readers complain about issues after the update, among other things because Kerberos hardening measures take effect since July 2023 and can no longer be disabled. Here is part 1 of a follow-up on these issues.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
