Palo Alto Networks Unit 42 Cloud Threat Report Volume 7 (April 2023)

Posted on 2023-05-07 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]The run on the cloud continues unabated, but the number of vulnerabilities and security threats is steadily increasing. Misconfigurations, weak credentials, lack of authentication, unpatched vulnerabilities and malicious (infected) open source software (OSS) threaten security. Some developers hard-pack credentials into the source code of their software, making unauthorized access easy. Palo Alto Networks' (cybersecurity provider) Unit 42 Cloud Threat Report (Volume 7, April 2023) looks at how vulnerabilities in access to cloud services affect enterprise security posture.

Continue reading

Posted in Cloud, Security | Tagged , | Leave a comment

FSLogix blocks OneDrive synchronization in virtual machines

Posted on 2023-05-06 by guenni

[German]Brief note for administrators who use FSLogix in the company on the one hand, but virtualize Windows instances on the other. In this combination, synchronization problems with OneDrive may occur. An error "FSLogix_unsupported_environment" is then reported. Microsoft confirmed this in a support post at the end of April 2023.

Continue reading

Posted in issue, Software, Virtualization, Windows | Tagged , , | Leave a comment

RCE vulnerability in Cisco SPA112 2-port phone adapter, drop that device

Posted on 2023-05-06 by guenni

Stop - Pixabay[German]US provider Cisco warns in a message about a critical vulnerability in one of its phone adapters. This vulnerability allows an attacker to take control of the device. Unfortunately, affected users can only dispose of this phone adapter, since the manufacturer will no longer offer a security update. The reason is that the device has reached the end of its support period.

Continue reading

Posted in devices, Security, Software | Tagged , | Leave a comment

Edge 113.0.1774.35

Posted on 2023-05-06 by guenni

EdgeMicrosoft updated the Edge browser to version 113.0.1774.35 (security and bug fixes) on May 5, 2023 in the stable channel. According to the release notes, it fixes vulnerabilities from the Chromium project as well as two specific Edge vulnerabilities, CVE-2023-29350 and CVE-2023-29354. On May 4, there had already been the Edge 112.0.1722.71 in the Extendes stable, which fixes the same vulnerabilities.

Posted in browser, Security, Update | Tagged | Leave a comment

DNSteal: Data Exfiltration and Tunneling via DNS – Techniques and Detection

Posted on 2023-05-06 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]A security topic that was not really on my radar: data theft through manipulation of the Domain Name System (DNS). The whole thing goes under the terms DNSteal and DNS Exfiltration. Roughly speaking, these are techniques that can be used to tunnel firewalls and exfiltrate (steal) data via redirected DSN servers.

Continue reading

Posted in Security | Tagged | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Windows 10/11: ResampleDmo.dll missing/not found

Posted on 2023-05-06 by guenni

Windows[German]Users of Windows 10 – and especially Windows 11 – sometimes get the error message that the library ResampleDmo.dll was not found when starting applications. After I recently came across a report about Windows 11 and this problem, I did some research. The exact causes are unclear so far (there are many possibilities why the error occurs). But there are some approaches to fix the cause of the error.

Continue reading

Posted in issue, Windows | Tagged , , | Leave a comment

3 vulnerabilities discovered in MS Azure API management

Posted on 2023-05-06 by guenni

[German]Security researchers from Israeli security vendor Ermetic have discovered three vulnerabilities in Microsoft's Azure API management. Two server-side request forgery (SSRF) vulnerabilities and an unrestricted file upload issue create risks for the Microsoft cloud environment. The vulnerabilities could be abused by malicious actors to gain access to sensitive information or backend services.

Continue reading

Posted in Cloud, Security | Tagged , , | Leave a comment

Windows 11 22H2: April 2023 Update KB5025239 is causing issues

Posted on 2023-05-05 by guenni

Windows[German]As of April 2023, update KB5025239 for Windows 11 22H2 was released and fixes several vulnerabilities (including a remote code execution vulnerability CVE-2023-21554, see QueueJumper: Patch critical RCE vulnerability in MSMQ service). However, this update seems to cause issuesfor some users.

Continue reading

Posted in issue, Update, Windows | Tagged , , | 2 Comments

Windows 11 22H2: Bug in speech recognition by update KB5022913

Posted on 2023-05-05 by guenni

Windows[German]It is an exotic bug that Microsoft has just confirmed for Windows 11 22H2. After installing the update KB5022913, there can be sporadic problems in the language recognition of the operating system. However, the whole thing only occurs when Chinese or Japanese language inputs are made. So it should only affect a few readers of this blog.

Continue reading

Posted in issue, Update, Windows | Tagged , , | Leave a comment

Pixie song "Where is my Mind" let Google's Pixel alarms fail …

Posted on 2023-05-05 by guenni

Stop - Pixabay[German]Sounds bizarre, is bizarre and unfortunately true. When users have a certain song played, the Alam function of the Google Pixel Android smartphones fails. The background is that the assistant then responds to the lyrics of the song "Where is my Mind" by the band Pixies. This contains a well-understood word STOP at the very beginning. Meanwhile, the band means "sorry" – and I mean, who does that?

Continue reading

Posted in Android, devices, issue | Tagged , , | 1 Comment