Patchday: Windows 10-Updates (May 9, 2023)

Windows[German]On May 9, 2023 (second Tuesday of the month, patchday at Microsoft), several cumulative updates were released for the supported Windows 10 builds (from RTM version to current version) as well as for the Windows Server counterparts. Here are some details on the respective security updates for Windows 10.

Continue reading

Posted in Security, Update, Windows | Tagged , , , | 2 Comments

Microsoft Security Update Summary (May 9, 2023)

Update[German]On May 9, 2023, Microsoft released security updates for Windows clients and servers, for Office – as well as for other products. The security updates fix 37 CVE vulnerabilities, six of which are critical and 36 are classified as important. Below is a compact overview of these updates released on Patchday.A list of updates can be found on this Microsoft page. Details about the update packages for Windows, Office, etc. are available in separate blog posts.

Continue reading

Posted in Office, Security, Update, Windows | Tagged , , , , | Leave a comment

Exchange Online: Microsoft will now block mails from unpatched Exchange systems

Exchange Logo[German]Microsoft has again reminded on May 8, 2023, that as a security measure for Exchange Online, they will now start to delay the delivery of mails from (on-premises) Exchange servers if these systems have fallen out of support or are not patched. This is a security measure that had been announced by Redmond some time ago and is now being implemented in stages.

Continue reading

Posted in Cloud, Security, Software | Tagged , | Leave a comment

Exchange Online: Reminder Remote PowerShell is "deprecated" as of July 15, 2023

Exchange Logo[German]Microsoft had already announced the discontinuation of Remote PowerShell (RPS) in Exchange Online for some time (see my post Exchange Online PowerShell V2 soon deprecated, replaced by PowerShell V3 from December 2022). Starting July 15, 2023, Microsoft plans to phase out this functionality for customers. From then on, the PowerShell modules in question will no longer work.

Continue reading

Posted in General | Leave a comment

Microsoft Security Compliance Toolkit 1.0 – "the dark side"

Sicherheit (Pexels, allgemeine Nutzung)[German]At the beginning of April 2023, Microsoft released a new version of its Microsoft Security Compliance Toolkit 1.0. Actually, it is a compulsory exercise for administrators in companies to deal with this part. In the following, I will briefly introduce the Microsoft Security Compliance Toolkit 1.0 – but I will also discuss its downsides. Because the implementation of this toolkit is a "laughing stock" that shows that the people in charge at Microsoft no longer understand what they are putting together and bringing to the administrators.

Continue reading

Posted in Security, Software, Windows | Tagged , , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...


Microsoft started enforcing number matching on MFA since May 8, 2023

[German]Just a reminder to administrators who are responsible for Microsoft's cloud environments (Azure, etc.) in companies. It has probably been known for a long time, but as of May 8, 2023, the provider Microsoft will switch its multi-factor authentication (MFA) for cloud services to the so-called number matching procedure in order to increase security.

Continue reading

Posted in Cloud, Security | Tagged , | 1 Comment

Western Digital informs customers about hack (May 5, 2023)

Sicherheit (Pexels, allgemeine Nutzung)[German]At the beginning of April 2023, the hard drive manufacturer Western Digital had already admitted to a cyber incident in which data was stolen. In an email to customers as of May 5, 2023, the manufacturer informs its customers about this incident, which must have already taken place on or around March 26, 2023.

Continue reading

Posted in Security | Tagged | 1 Comment

Windows and the cURL trap; deleted curl instance breaks Windows update

Windows[German]Microsoft delivers the cURL library with the operating system since Windows 10. However, Redmond does not manage to update the delivered cURL version promptly when security vulnerabilities become known. This leads to the fact that Curl versions with known vulnerabilities are shipt with Windows. If someone gets the idea to simply delete the cURL package from Windows (or have it deleted by a virus scanner that finds the version vulnerabe), he breaks the Windows update.

Continue reading

Posted in issue, Security, Software, Update, Windows | Tagged , , , , | Leave a comment

Palo Alto Networks Unit 42 Cloud Threat Report Volume 7 (April 2023)

Sicherheit (Pexels, allgemeine Nutzung)[German]The run on the cloud continues unabated, but the number of vulnerabilities and security threats is steadily increasing. Misconfigurations, weak credentials, lack of authentication, unpatched vulnerabilities and malicious (infected) open source software (OSS) threaten security. Some developers hard-pack credentials into the source code of their software, making unauthorized access easy. Palo Alto Networks' (cybersecurity provider) Unit 42 Cloud Threat Report (Volume 7, April 2023) looks at how vulnerabilities in access to cloud services affect enterprise security posture.

Continue reading

Posted in Cloud, Security | Tagged , | Leave a comment

FSLogix blocks OneDrive synchronization in virtual machines

[German]Brief note for administrators who use FSLogix in the company on the one hand, but virtualize Windows instances on the other. In this combination, synchronization problems with OneDrive may occur. An error "FSLogix_unsupported_environment" is then reported. Microsoft confirmed this in a support post at the end of April 2023.

Continue reading

Posted in issue, Software, Virtualization, Windows | Tagged , , | Leave a comment