China hacker (Storm-0558) accessed Outlook accounts in Microsoft's cloud

Posted on 2023-07-13 by guenni

[German]A suspected China-based hacking group, which Microsoft refers to as Storm-0558, has managed to gain access to email accounts of about 25 organizations. These include government agencies (US State Department), as well as corresponding private accounts of people who are probably connected to these organizations. The explosive fact is that access was gained using a Microsoft account (MSA) customer key, which was used to forge tokens. I summarize below what Microsoft and security researcher Kevin Beaumont and CISA have to say about this.

Continue reading

Posted in Cloud, Security | Tagged , | Leave a comment

Microsoft Office Updates (July 11, 2023)

Posted on 2023-07-13 by guenni

Update[German]On July 11, 2023 (second Tuesday of the month, Microsoft Patchday), Microsoft released several security-related updates for still-supported Microsoft Office versions and other products. With the April 2023 patchday, support for Office 2013 ended – but vulnerabilities were still closed in July. Below is an overview of the available updates.

Continue reading

Posted in Office, Security, Update | Tagged , , , | Leave a comment

Windows: Malware still loadable in kernel drivers (RedDriver attack)

Posted on 2023-07-13 by guenni

Windows[German]Microsoft's measures to prevent the loading of malicious kernel drivers don't seem to be working at all. I've had the issue on my radar for weeks, because the driver block list doesn't really seem to work. Now security researchers at Talos have revealed a campaign in which open source tools use forged signature timestamps to load malicious Windows drivers.

Continue reading

Posted in Security, Update, Windows | Tagged , , | Leave a comment

Firefox 115.0.2/ESR with bug fixes released

Posted on 2023-07-12 by guenni

Mozilla[German]The days the Mozilla developers had released the versions 115.0 of the Firefox browser (see). In the meantime, version 115.0.2 of the normal release channel and the ESR channel with extended support has already been added.

Continue reading

Posted in browser, Security, Software, Update | Tagged | 2 Comments

Windows 7/Server 2008 R2; Server 2012 R2: Updates (July 11, 2023)

Posted on 2023-07-12 by guenni

Windows[German]As of July 11, 2023, various security updates have been released for Windows Server 2008 R2 (in its 4th ESU year) and Windows Server 2012/R2 (the updates may still install on Windows 7 SP1). Here is an overview of these updates for Windows Server 2008 R2 and Windows Server 2012/R2. Continue reading

Posted in Security, Update, Windows | Tagged , , , , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Patchday: Windows 11/Server 2022-Updates (July 11, 2023)

Posted on 2023-07-12 by guenni

Windows[German]On July 11, 2023 (second Tuesday of the month, Microsoft patch day), Microsoft also released cumulative updates for Windows 11 22H1 and 22H2. In addition, Windows Server 2022 received an update. Here are some details about these updates, which are supposed to fix vulnerabilities as well as problems.
Continue reading

Posted in Security, Update, Windows | Tagged , , , , | Leave a comment

Patchday: Windows 10-Updates (July 11, 2023)

Posted on 2023-07-12 by guenni

Windows[German]On July 11, 2023 (second Tuesday of the month, Patchday at Microsoft), several cumulative updates were released for the supported Windows 10 builds (from RTM version to current version) as well as for the Windows Server counterparts. Here are some details on the respective security updates for Windows 10.
Continue reading

Posted in Security, Update, Windows | Tagged , , , | 2 Comments

Microsoft Security Update Summary (July 11, 2023)

Posted on 2023-07-12 by guenni

Update[German]On July 11, 2023, Microsoft released security updates for Windows clients and servers, for Office – as well as for other products. The security updates eliminate 130 vulnerabilities, five are 0-Days. Below is a compact overview of these updates released on Patchday.A list of updates can be found on this Microsoft page. Details on the update packages for Windows, Office, etc. are available in separate blog posts.
Continue reading

Posted in Office, Security, Software, Update, Windows | Tagged , , , , | Leave a comment

Outlook startup asks for "re-open windows", options to disable missing

Posted on 2023-07-11 by guenni

[German]Microsoft seems to have shipped a new bug in Outlook with the late June 2023 Office updates. A blog reader pointed out to me that he is struggling with the problem that every time he starts Outlook, it asks if windows open in the previous session should be reopened. However, there are no windows to reopen and the options to disable the prompt are missing from the settings. More Outlook users have this problem. The remedy is a direct registry entry.

Continue reading

Posted in issue, Office, Software | Tagged , , | 1 Comment

Data leak at German Postbank and Deutsche Bank (blame MOVEit?)

Posted on 2023-07-11 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]There has been a confirmed data leak at German Deutsche Bank and it's Postbank, in which personal customer data such as name and IBAN (international banking number) have fallen into the hands of third parties. Customers who have used the "account switching service" of these banks are affected and have now been informed about the incident by letter. The victims face increased security risks. From my information it's likely that the banks are victim of the MOVEit transfer vulnerarabilities). The banks are also likely to face claims for damages.

Continue reading

Posted in Security | Tagged , | Leave a comment