MS OneNote will block 120 dangerous file types in future

[German]Microsoft is reacting to the fact that OneNote is now being abused as a malware sling for systems. The application is supposed to block 120 dangerous file types in the future, so that they can no longer be abused for malware attacks by downloads from the Internet.

Continue reading

Posted in Office, Security | Tagged , | Leave a comment

FBI seizes Genesis Market

Sicherheit (Pexels, allgemeine Nutzung)[German]In a coordinated action, the FBI and international law enforcement have seized and taken down the domain of Genesis Market, dismantling one of the most important criminal online platforms. The Genesis Market was a central hub for criminals seeking to purchase stolen credentials as well as tools to harvest such credentials. The Market was linked to millions of cyberattacks, from fraud to ransomware cases.

Continue reading

Posted in Security | Tagged | Leave a comment

Critical vulnerability CVE-2023-1707 in HP printer firmware, no patch available

Sicherheit (Pexels, allgemeine Nutzung)[German]Firmware from various laser printers is vulnerable to CVE-2023-1707 vulnerability. Certain HP Enterprise LaserJet and HP LaserJet are potentially vulnerable to information disclosure in managed environments when IPsec is enabled with FutureSmart version 5.6. A patch may be up to 90 days away. Administrators so far only have the option to perform a workaround in the form of a firmware downgrade.

Continue reading

Posted in devices, Security | Tagged , | Leave a comment

KVM bug: Windows VMs can hang at boot after 11 days

Stop - Pixabay[German]Over the past few months, some administrators have complained of Windows virtual machine boot issues in conjunction with the monthly security updates. In many cases, this could be traced back to VMware products such as ESXi – or turning off Secure Boote helped get VMs booting again. But there is a bug in certain versions of the virtualizer KVM, which affects e.g. QUEMU or Proxmox users from version 7.x on. Then Windows virtual machines no longer boot if they have been running for more than 11 days. I'll pull this issue out separately.

Continue reading

Posted in Virtualization, Windows | Tagged , | Leave a comment

Hard drive manufacturer Western Digital victim of cyber attack (March 2023)

Sicherheit (Pexels, allgemeine Nutzung)[German]Hard drive manufacturer Western Digital admitted to a cyber attack on its IT networks on April 3, 2023. An unauthorized person was able to gain access to the internal IT networks probably already in March this year. The whole thing was noticed on March 26, 2023, the company announced in a message to the public. Whether data has been leaked is currently unknown.

Continue reading

Posted in Security | Tagged | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...


Windows 11 22H2: Fix for script error in Group Policy Preferences (GPP)

Windows[German]Good news for Windows 11 client administrators (version 22H2). Microsoft has fixed the script error in Group Policy Preferences (GPP) in the preview updates from the end of March 2023 and will generally roll out this fix on Patchday in April 2023. This should eliminate the annoying crashes, for example in the Task Scheduler or Group Policy Management Editor.

Continue reading

Posted in issue, Update, Windows | Tagged , , | Leave a comment

Design flaw in WiFi protocol allows attackers to intercept network traffic

Sicherheit (Pexels, allgemeine Nutzung)[German]Another small addendum from the end of March 2023. Security researchers have discovered a serious design weakness in the IEEE 802.11 WiFi protocol standard. This weakness could allow attackers to eavesdrop on WLAN access points and transmit network frames in plain text. This could, for example, inject malicious JavaScript commands into the network packets. It is an academic finding, and there is no evidence yet that this flaw is being exploited.

Continue reading

Posted in Security | Tagged | Leave a comment

Hackers attack WordPress via unpatched Elementor Pro plugin

WordPress administrators using the Elementor Pro plugin should urgently check if it is up to date and if WordPress has already been compromised (e.g. check urlscan.io to see what connections are going down). On March 18, 2023, NinTechNet security researcher Jerome Bruandet had discovered a vulnerability that can be exploited if the plugin is installed together with WooCommerce. Hackers are now actively exploiting the highly dangerous vulnerability in WordPress plugin Elementor Pro. The plugin for creating WordPress pages is used by over eleven million websites. Details have been summarized by the colleagues from Bleeping Computer here (thanks to the reader's tip).

Posted in Security, Software | Tagged , | Leave a comment

.NET updates: UUP distribution; preview updates finally optional, installation error fixed for KB5022729

Update[German]Today another article summarizing issues around the topic "Installation of .NET Framework Updates", in which I also revisit some older points. For example, Microsoft already fixed the annoying automatic installation of .NET Preview updates in January 2023, so they are now really optional. Robert informed me that the .NET Framework installation issue with .NET update KB5022729 was fixed. And Microsoft is distributing .NET updates for Windows 11 22H2 via UUP.

Continue reading

Posted in issue, Software, Update | Tagged , , | 1 Comment

March 2023: What's going up with AnyDesk?

Stop - Pixabay[German]I'm picking up on a topic and posting it here on the blog for information purposes with a request for feedback from those affected. It's about the provider AnyDesk and its remote maintenance software of the same name. A reader pointed out to me that there were problems with the renewal of AnyDesk licenses. According to the reader, attempts to contact the sales or support department of this vendor have been "going nowhere" for 2-3 weeks. I did a little search on the Internet and followed the reader's advice. There are some sites where people share similar experiences.

Continue reading

Posted in General, Software | Tagged , | 1 Comment