Microsoft Security Update Summary (July 11, 2023)

Posted on 2023-07-12 by guenni

Update[German]On July 11, 2023, Microsoft released security updates for Windows clients and servers, for Office – as well as for other products. The security updates eliminate 130 vulnerabilities, five are 0-Days. Below is a compact overview of these updates released on Patchday.A list of updates can be found on this Microsoft page. Details on the update packages for Windows, Office, etc. are available in separate blog posts.
Continue reading

Posted in Office, Security, Software, Update, Windows | Tagged , , , , | Leave a comment

Outlook startup asks for "re-open windows", options to disable missing

Posted on 2023-07-11 by guenni

[German]Microsoft seems to have shipped a new bug in Outlook with the late June 2023 Office updates. A blog reader pointed out to me that he is struggling with the problem that every time he starts Outlook, it asks if windows open in the previous session should be reopened. However, there are no windows to reopen and the options to disable the prompt are missing from the settings. More Outlook users have this problem. The remedy is a direct registry entry.

Continue reading

Posted in issue, Office, Software | Tagged , , | 1 Comment

Data leak at German Postbank and Deutsche Bank (blame MOVEit?)

Posted on 2023-07-11 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]There has been a confirmed data leak at German Deutsche Bank and it's Postbank, in which personal customer data such as name and IBAN (international banking number) have fallen into the hands of third parties. Customers who have used the "account switching service" of these banks are affected and have now been informed about the incident by letter. The victims face increased security risks. From my information it's likely that the banks are victim of the MOVEit transfer vulnerarabilities). The banks are also likely to face claims for damages.

Continue reading

Posted in Security | Tagged , | Leave a comment

European Commission adopts adequacy decision for EU-U.S. Data Privacy Framework

Posted on 2023-07-10 by guenni

[German]After the U.S. recently declared that it has implemented the terms of the EU-U.S. data transfer agreement "Transatlantic Data Privacy Framework" (DPF) and complies with the requirements, the EU Commission is following suit. On July 10, 2023, the EU Commission issued the expected adequacy decision for the EU-U.S. data transfer agreement "Transatlantic Data Privacy Framework" (DPF). The business community is celebrating the decision, Max Schrems with his organization noyb has announced the review of the DPF by the European Court of Justice.

Continue reading

Posted in Cloud, Security | Tagged , | Leave a comment

Two file manager apps in Google Play Store transfer data to China

Posted on 2023-07-09 by guenni

[German]Unpleasant story that once again shows that apps should be viewed with great caution and used with restraint. Security researchers have discovered two apps in the Google Play Store that contain spyware that sends data directly to China. Apps like file managers are quickly installed on an Android device.

Continue reading

Posted in Android, Security, Software | Tagged , , | 1 Comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

MOVEit Transfer: New security advisory and update (July 6, 2023)

Posted on 2023-07-08 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]I hope, admins who are responsible for MOVEit Transfer in enterprises already have stopped using this software. Because after the MOVEit Transfer disaster with the vulnerabilities disclosed at the end of May 2023 and the data theft by the Clop ransomware group, there is a new update of the software, closing 3 vulnerabilities and also a new security advisory.

Continue reading

Posted in Cloud, Security, Software, Update | Tagged , , , | Leave a comment

Firefox 115.0.1 with bug fix released

Posted on 2023-07-08 by guenni

Mozilla[German]The Mozilla developers just had released the versions 115.0 of the Firefox browser (see). Now the version 115.0.1 was released. The release notes of Firefox 115.0.1 from July 7, 2023 only contain the note: Fixed a startup crash for Windows users with Kingsoft Antivirus software installed (bug 1837242).

Posted in browser, Update | Tagged | 1 Comment

69% of FortiGate firewalls vulnerable to critical unpatched RCE vulnerability CVE-2023-27997

Posted on 2023-07-07 by guenni

Stop - Pixabay[German]Is unpatched FortiGate firewalls creating a new cyber risk? Experts are sounding the alarm because something like 70% of FortiGate firewalls are vulnerable to attack via the critical CVE-2023-27997 vulnerability. More than 336,000 servers are reported to be unprotected through the firewall (e.g. via VPN) as a result. Fortinet has already closed the vulnerability in its FortiGate firewalls in June 2023 through firmware updates. However, this did not reach the administrators, also due to poor communication.

Continue reading

Posted in Security | Tagged | Leave a comment

Outlook.com search issue ;(July 6/7, 2023); MS Teams "duplicate contacts" bug unfixed since end of March 2023.

Posted on 2023-07-07 by guenni

[German]Microsoft is struggling with various disruptions to its cloud infrastructure in the last few hours (July 6 / 7, 2023). Hours ago, the search in Outlook.com was broken – the cause was probably a faulty update. And currently the status indicator reports problems with Microsoft Teams private.

Continue reading

Posted in Cloud, issue | Tagged , , | Leave a comment

Microsoft fixes Windows Defender LSA bug in Windows 11 with update KB5007651 (version 1.0.2306.10002)

Posted on 2023-07-06 by guenni

Windows[German]Wonders may yet happen. I have the first reports that Microsoft has fixed the Local Security Authority (LSA) issue that has been simmering in Windows 11 for months. It was caused by an update, and as a result, certain features of Defender do not work and cause errors. Here is a brief overview of this issue and the fix.

Continue reading

Posted in Security, Update, Windows | Tagged , , | 4 Comments