[German]A remote code execution vulnerability CVE-2023-21554 exists in the Microsoft Message Queuing service (MSMQ), which has been rated critical with a CVEv3 score of 9.8. Microsoft has released security updates for Windows clients and servers on April 11, 2023, that also address this vulnerability. Those who have not yet updated their systems should apply the patch promptly, or at least mitigate the vulnerability.
[German]Microsoft confirmed issues with the latest Outlook version 2303 (build 16227.20212) last week. Users will not be able to view or access Microsoft 365 group calendars and email messages in Outlook Desktop after updating to this version, which will be rolled out in late March 2023.
[German]Unpleasant information for users of Affinity forums. The operator informs its users that there was a cyber attack on April 6, 2023. It seems that the account of an administrator was compromised, so that the attacker(s) could gain access to the list of members of the forums. In the process, the email addresses associated with the accounts were likely captured, as well as the IP addresses of the forum users.
[English]Google has released unscheduled updates to Google Chrome Browser 112 in the Extended and Stable channels for Mac, Linux and Windows as of April 14, 2023. Microsoft has also update the Edge browser version 112. They are security updates that fix a vulnerability.
[English]As of April 11, 2023, Microsoft has implemented security updates for various Microsoft products on the monthly patch day. There was sporadic feedback from readers pointing out minor problems. I will summarize various messages in the comments of the readers to a collective post in the form of a patchday gleanings for April 2023.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Hard drive manufacturer Western Digital had admitted to a cyber attack on its IT networks on April 3, 2023. Now the hackers responsible for this attack have probably revealed details to a US medium. Thus, 10 terabytes of data could be stolen. The hackers are demanding a hefty ransom sum.
[German]German Rheinmetall Group (defence and automotiv supplier) and its subsidiaries have been hit by a cyber attack. This is already the second attack within a few months – this time probably successful. The attack has been known since Friday, April 14, 2023, although few details have become public. A prosecutor's office has launched an investigation. Exactly how serious this attack, which could be related to the defense company's activities and also affects subsidiaries such as the automotive supplier Kolbenschmidt in Neckarsulm, is currently unknown.
[German]Microsoft has integrated its Local Administrator Password Solution (LAPS) directly into the Windows operating system with the April 2023 patchday (April 11, 2023). This was done due to "popular demand" from enterprise customers, as Microsoft wrote. However, this move caused serious issues for administrators who installed the old LAPS client on non English Windows. In
[German]I am taking up an issue that has been brought to my attention several times now by blog readers and concerns users of Microsoft Office. Since "recently", attentive users have noticed that there is suddenly a program ai.exe on their system, which starts a process with Office applications, and can cause trouble. I'll take up the topic and summarize what I have found out in the meantime.
[German]Brief addendum from the April 2023 patchday. Microsoft has released updates for Windows 10 and 11 on April 11, 2023, in addition to various updates for these operating systems. The two OOBE updates KB5026039 and KB5026038 for Windows 11 and update KB5026037 for Windows 10 were also released on this date.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
