Microsoft's warning: Teams users targeted by Russian attackers (Midnight Blizzard)

Posted on 2023-08-05 by guenni

Teams[German]Microsoft has just issued a warning to Teams users because they have encountered phishing campaigns targeting this clientele. Behind these phishing campaigns are Russian attackers that Microsoft names Midnight Blizzard (or NOBELIUM. APT29, UNC2452 and Cozy Bear). The group's goal is to obtain credentials from victims, specifically in the government, non-governmental organization (NGO), IT services, technology, discrete manufacturing, and media sectors.

Continue reading

Posted in Security | Tagged | Leave a comment

Firefox 116.0.1

Posted on 2023-08-05 by guenni

Mozilla[German]The days the Mozilla developers had released the versions 116.0.0 of the Firefox browser. Now version 116.0.1 has already been added. The release notes says that a bug has been fixed: Fixed an issue which caused chart elements to render incorrectly for Windows users. 

Posted in browser, Update | Tagged | Leave a comment

Microsoft accidentally releases Windows 11 "staging tool" to unlock features

Posted on 2023-08-04 by guenni

Windows[German]Microsoft mistakenly released the so-called "staging tool" that is used internally to unlock features in Windows 11. The tool was of course immediately withdrawn, but the leak was noticed and a copy of the staging tool is now circulating. Now Microsoft is trying to block the use of the tool. Below, for interested readers, is a brief overview of what's going on.

Continue reading

Posted in Software, Windows | Tagged , | Leave a comment

Outlook: Microsoft releases workaround for "open window" startup bug

Posted on 2023-08-04 by guenni

[German]Since the Office updates of late June 2023, users have been complaining about a new bug in Outlook. Outlook asks at every start if windows open in the previous session (which do not exist) should be opened again. I had reported in the blog – now Microsoft has published a workaround that looks very familiar to me. Continue reading

Posted in issue, Office | Tagged , | 1 Comment

Thunderbird 102.14 and 115.1 released

Posted on 2023-08-04 by guenni

[German]The developers of Thunderbird have released another update of the email client to version 115.1.0 and to 102.14 on August 1-2, 2023. These are updates which fix bugs and vulnerabilities.

Continue reading

Posted in Security, Software, Update | Tagged | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Microsoft as a Security Risk? Azure vulnerability unpatched since March 2023, heavy criticism from Tenable – Part 2

Posted on 2023-08-03 by guenni

[German]Security vendor Tenable has made serious accusations against Microsoft. A critical vulnerability in Azure Active Directory (AAD, recently EntraID) has been known since March 2023, but has not yet been patched. The CEO of security vendor Tenable, Amit Yoran, sharply criticizes Microsoft's handling of security issues. More than 40 percent of all particularly acute vulnerabilities in recent years are related to Microsoft products. This comes at an inopportune time for Redmond, as the hack of Microsoft Azure services by the suspected Chinese group Storm-0558 has already caused enough waves. Addendum: Microsoft has patched the vulnerability on August 7, 2023.

Continue reading

Posted in Cloud, Security | Tagged , , | 1 Comment

Microsoft as a Security Risk? U.S. senator calls for Microsoft to be held accountable over Azure cloud hack- Part 1

Posted on 2023-08-03 by guenni

[German]Is Microsoft and its handling of vulnerabilities in its products now the "top cyber risk"? The hack of Microsoft Azure services by the suspected Chinese group Storm-0558, made possible by a stolen private MSA key, seems to have been the straw that broke the camel's back. U.S. senators have brought the incident and Microsoft's irresponsible handling of security to the table in a hissy letter to U.S. institutions, demanding investigations or consequences.

Continue reading

Posted in General | Tagged , , | Leave a comment

Vulnerability CVE-2023-35082 in Ivanti MobileIron Core (up to version 11.2)

Posted on 2023-08-03 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]After already admitting to two vulnerabilities in July 2023 that were exploited in hacks, Ivanti has confirmed another vulnerability in MobileIron Core (Ivanti Endpoint Manager Mobile, EPMM). According to a new security advisory from Ivanti, there is another vulnerability CVE-2023-35082 in Ivanti MobileIron Core version 11.2 and older that should be fixed by a software update to a new, still supported version.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Microsoft has published the TokenTheft playbook

Posted on 2023-08-03 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Small note to administrators who are responsible for or manage services and applications in the (Microsoft) cloud. The theft of tokens can enable attackers to access the corresponding services. As a result of a corresponding incident, Microsoft has therefore published the so-called TokenTheft Playbook. This is an online document with numerous tips for "cloud managers" who have to take care of security and protection against the theft of access tokens.

Continue reading

Posted in Cloud, Security | Tagged , , | Leave a comment

PowerToys 0.72 released

Posted on 2023-08-02 by guenni

Windows[German]Microsoft has released version 0.72 of its free PowerToys for Windows 10 and Windows 11 on August 1, 2023. I have here in the blog no longer reported about these tools and the accompanying weekly water levels, especially since the software often came along with bugs and then caused problems. With the version 0.72 was optimized yes with the size of the installations as well as with the installation directory. Here is an overview of the current status.
Continue reading

Posted in Software, Windows | Tagged , | Leave a comment