Exchange Online: Client Credential Flow for SMTP AUTH available (July 2023)

Posted on 2023-07-16 by guenni

Exchange Logo[German]Quick addendum from this week: Microsoft's Exchange team has already announced the availability of Client Credential Flow (CCF) for SMTP AUTH in Exchange Online on July 10, 2023. Client Credential Flow (CCF) for SMTP AUTH enables applications to use modern authentication to deliver authenticated email to Exchange Online without requiring an interactive login. Using OAuth reduces the risk of credentials being compromised during authentication.

Continue reading

Posted in Security, Software | Tagged | Leave a comment

WordPress plugin All-In-One Security (AIOS) 5.1.9 with severe vulnerability

Posted on 2023-07-15 by guenni

[German]WordPress users who are still using the plugin All-In-One Security (AIOS) in version 5.1.9 should react immediately. UpdraftPlus, the maintainer, has issued a security alert because the plugin was storing user login passwords in plain text in the database.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Windows 11 23H2 announced for 4th Q. 2023; Windows 10 IoT Enterprise LTSC 2021 starting Aug. 1, 2023.

Posted on 2023-07-14 by guenni

Windows[German]There is some news regarding Windows 11 and Windows 10 IoT. Indirectly, Microsoft has now given a hint that the next feature update for Windows 11 will probably come at the end of 2023 as version 23H2 via Enablement Updates. And for people who don't want to say goodbye to Windows 10 in 2025, there is also a corresponding message. Windows 10 IoT Enterprise LTSC 2021 can be licensed from August 2023. Then there is support until 2031. And the sale via OEMs has (imho) been expanded to volume licenses due to "pressure" from customers.

Continue reading

Posted in Windows | Tagged , | 1 Comment

Edge 114.0.1823.82

Posted on 2023-07-14 by guenni

EdgeMicrosoft has updated the Edge browser to version 114.0.1823.82 as of July 13, 2023. Version 114.0.1823.79 had already been released on July 10. The release notes state that various bugs and performance issues for Microsoft Edge have been fixed. Thanks to the reader for the tip.

Posted in browser | Tagged | 2 Comments

Critical RCE Vulnerability CVE-2023-36664 in GhostScript affects Linux, Windows etc.

Posted on 2023-07-14 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]A security researcher has developed a proof of concept to exploit a remote code execution vulnerability CVE-2023-36664, rated critical (CVSS score 9.8), in the widely used (for PostScript and PDF displays) GhostScript software. Both Linux and Windows systems are threatened if GhostScript is used before version 10.01.2. On Windows, GhostScript could have entered the system via LibreOffice or Bullzip PDF printers, for example.

Continue reading

Posted in Linux, Security, Software, Windows | Tagged , | 1 Comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

HTML RCE Vulnerability CVE-2023-36884 Allows Office and Windows System Takeover

Posted on 2023-07-13 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Short addendum regarding security. As of July 11, 2023 (patch day), another 0-day vulnerability (CVE-2023-36884) has become public, which allows remote code execution in Microsoft Windows and Office. The vulnerability has already been exploited by hackers from the group Storm-0978 for attacks on various targets (e.g. Nato summit in July 2023). I had mentioned the vulnerability in the patchday overview, but currently there is no patch. Microsoft has only published mitigation instructions.

Continue reading

Posted in Office, Security, Windows | Tagged , , , | Leave a comment

China hacker (Storm-0558) accessed Outlook accounts in Microsoft's cloud

Posted on 2023-07-13 by guenni

[German]A suspected China-based hacking group, which Microsoft refers to as Storm-0558, has managed to gain access to email accounts of about 25 organizations. These include government agencies (US State Department), as well as corresponding private accounts of people who are probably connected to these organizations. The explosive fact is that access was gained using a Microsoft account (MSA) customer key, which was used to forge tokens. I summarize below what Microsoft and security researcher Kevin Beaumont and CISA have to say about this.

Continue reading

Posted in Cloud, Security | Tagged , | Leave a comment

Microsoft Office Updates (July 11, 2023)

Posted on 2023-07-13 by guenni

Update[German]On July 11, 2023 (second Tuesday of the month, Microsoft Patchday), Microsoft released several security-related updates for still-supported Microsoft Office versions and other products. With the April 2023 patchday, support for Office 2013 ended – but vulnerabilities were still closed in July. Below is an overview of the available updates.

Continue reading

Posted in Office, Security, Update | Tagged , , , | Leave a comment

Windows: Malware still loadable in kernel drivers (RedDriver attack)

Posted on 2023-07-13 by guenni

Windows[German]Microsoft's measures to prevent the loading of malicious kernel drivers don't seem to be working at all. I've had the issue on my radar for weeks, because the driver block list doesn't really seem to work. Now security researchers at Talos have revealed a campaign in which open source tools use forged signature timestamps to load malicious Windows drivers.

Continue reading

Posted in Security, Update, Windows | Tagged , , | Leave a comment

Firefox 115.0.2/ESR with bug fixes released

Posted on 2023-07-12 by guenni

Mozilla[German]The days the Mozilla developers had released the versions 115.0 of the Firefox browser (see). In the meantime, version 115.0.2 of the normal release channel and the ESR channel with extended support has already been added.

Continue reading

Posted in browser, Security, Software, Update | Tagged | 2 Comments