[German]Microsoft is reacting to the fact that OneNote is now being abused as a malware sling for systems. The application is supposed to block 120 dangerous file types in the future, so that they can no longer be abused for malware attacks by downloads from the Internet.
[German]In a coordinated action, the FBI and international law enforcement have seized and taken down the domain of Genesis Market, dismantling one of the most important criminal online platforms. The Genesis Market was a central hub for criminals seeking to purchase stolen credentials as well as tools to harvest such credentials. The Market was linked to millions of cyberattacks, from fraud to ransomware cases.
[German]Firmware from various laser printers is vulnerable to CVE-2023-1707 vulnerability. Certain HP Enterprise LaserJet and HP LaserJet are potentially vulnerable to information disclosure in managed environments when IPsec is enabled with FutureSmart version 5.6. A patch may be up to 90 days away. Administrators so far only have the option to perform a workaround in the form of a firmware downgrade.
[German]Over the past few months, some administrators have complained of Windows virtual machine boot issues in conjunction with the monthly security updates. In many cases, this could be traced back to VMware products such as ESXi – or turning off Secure Boote helped get VMs booting again. But there is a bug in certain versions of the virtualizer KVM, which affects e.g. QUEMU or Proxmox users from version 7.x on. Then Windows virtual machines no longer boot if they have been running for more than 11 days. I'll pull this issue out separately.
[German]Hard drive manufacturer Western Digital admitted to a cyber attack on its IT networks on April 3, 2023. An unauthorized person was able to gain access to the internal IT networks probably already in March this year. The whole thing was noticed on March 26, 2023, the company announced in a message to the public. Whether data has been leaked is currently unknown.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Good news for Windows 11 client administrators (version 22H2). Microsoft has fixed the script error in Group Policy Preferences (GPP) in the preview updates from the end of March 2023 and will generally roll out this fix on Patchday in April 2023. This should eliminate the annoying crashes, for example in the Task Scheduler or Group Policy Management Editor.
[German]Another small addendum from the end of March 2023. Security researchers have discovered a serious design weakness in the IEEE 802.11 WiFi protocol standard. This weakness could allow attackers to eavesdrop on WLAN access points and transmit network frames in plain text. This could, for example, inject malicious JavaScript commands into the network packets. It is an academic finding, and there is no evidence yet that this flaw is being exploited.
WordPress administrators using the Elementor Pro plugin should urgently check if it is up to date and if WordPress has already been compromised (e.g. check urlscan.io to see what connections are going down). On March 18, 2023, NinTechNet security researcher Jerome Bruandet had discovered a vulnerability that can be exploited if the plugin is installed together with WooCommerce. Hackers are now actively exploiting the highly dangerous vulnerability in WordPress plugin Elementor Pro. The plugin for creating WordPress pages is used by over eleven million websites. Details have been summarized by the colleagues from Bleeping Computer here (thanks to the reader's tip).
[German]Today another article summarizing issues around the topic "Installation of .NET Framework Updates", in which I also revisit some older points. For example, Microsoft already fixed the annoying automatic installation of .NET Preview updates in January 2023, so they are now really optional. Robert informed me that the .NET Framework installation issue with .NET update KB5022729 was fixed. And Microsoft is distributing .NET updates for Windows 11 22H2 via UUP.
[German]I'm picking up on a topic and posting it here on the blog for information purposes with a request for feedback from those affected. It's about the provider AnyDesk and its remote maintenance software of the same name. A reader pointed out to me that there were problems with the renewal of AnyDesk licenses. According to the reader, attempts to contact the sales or support department of this vendor have been "going nowhere" for 2-3 weeks. I did a little search on the Internet and followed the reader's advice. There are some sites where people share similar experiences.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
