[German]As of May 9, various security updates have been released for Windows Server 2008 R2 (in its 4th ESU year) as well as for Windows Server 2012/R2 (the updates may still run on Windows 7 SP1). Here is an overview of these updates for Windows Server 2008 R2 and Windows Server 2012/R2.
Continue reading
[German]On May 9, 2023 (second Tuesday of the month, Microsoft patch day), Microsoft also released cumulative updates for Windows 11 22H1 and 22H2. In addition, Windows Server 2022 received an update. Here are some details about these updates, which are supposed to fix vulnerabilities as well as issues.
Continue reading
[German]On May 9, 2023 (second Tuesday of the month, patchday at Microsoft), several cumulative updates were released for the supported Windows 10 builds (from RTM version to current version) as well as for the Windows Server counterparts. Here are some details on the respective security updates for Windows 10.
[German]On May 9, 2023, Microsoft released security updates for Windows clients and servers, for Office – as well as for other products. The security updates fix 37 CVE vulnerabilities, six of which are critical and 36 are classified as important. Below is a compact overview of these updates released on Patchday.A list of updates can be found on this Microsoft page. Details about the update packages for Windows, Office, etc. are available in separate blog posts.
[German]Microsoft has again reminded on May 8, 2023, that as a security measure for Exchange Online, they will now start to delay the delivery of mails from (on-premises) Exchange servers if these systems have fallen out of support or are not patched. This is a security measure that had been announced by Redmond some time ago and is now being implemented in stages.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Microsoft had already announced the discontinuation of Remote PowerShell (RPS) in Exchange Online for some time (see my post Exchange Online PowerShell V2 soon deprecated, replaced by PowerShell V3 from December 2022). Starting July 15, 2023, Microsoft plans to phase out this functionality for customers. From then on, the PowerShell modules in question will no longer work.
[German]At the beginning of April 2023, Microsoft released a new version of its Microsoft Security Compliance Toolkit 1.0. Actually, it is a compulsory exercise for administrators in companies to deal with this part. In the following, I will briefly introduce the Microsoft Security Compliance Toolkit 1.0 – but I will also discuss its downsides. Because the implementation of this toolkit is a "laughing stock" that shows that the people in charge at Microsoft no longer understand what they are putting together and bringing to the administrators.
[German]Just a reminder to administrators who are responsible for Microsoft's cloud environments (Azure, etc.) in companies. It has probably been known for a long time, but as of May 8, 2023, the provider Microsoft will switch its multi-factor authentication (MFA) for cloud services to the so-called number matching procedure in order to increase security.
[German]At the beginning of April 2023, the hard drive manufacturer Western Digital had already admitted to a cyber incident in which data was stolen. In an email to customers as of May 5, 2023, the manufacturer informs its customers about this incident, which must have already taken place on or around March 26, 2023.
[German]Microsoft delivers the cURL library with the operating system since Windows 10. However, Redmond does not manage to update the delivered cURL version promptly when security vulnerabilities become known. This leads to the fact that Curl versions with known vulnerabilities are shipt with Windows. If someone gets the idea to simply delete the cURL package from Windows (or have it deleted by a virus scanner that finds the version vulnerabe), he breaks the Windows update.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
