ESDA Comments on the EU-U.S. Data Privacy Framework

Posted on 2023-03-14 by guenni

[German]The European Commission is in the process of preparing a new agreement on data exchange with the USA, called the Trans-Atlantic Data Privacy Framework. For this purpose, the EU Commission announced a preliminary adequacy decision as of December 13, 2022. This is to be the successor to the EU-U.S. Privacy Shields data protection agreement, which was rejected by the European High Court (ECJ). Now the European Data Protection Authority (EDSA) have commented on the preliminary decision.

Continue reading

Posted in Security | Tagged | Leave a comment

HP printer: Firmware update again blocks third-party ink cartridges (2023)

Posted on 2023-03-14 by guenni

Stop - Pixabay[German]They've done it again; despite class action lawsuits, damage awards and very bad publicity because of their firmware updates sold as "dynamic security updates"; which discourage users from using third-party ink cartridges. This refers to the inkjet printer manufacturer, the Hewlett Packard company. At the moment, numerous users are again reporting that they have fallen into this trap.

Continue reading

Posted in devices, issue | Tagged , , | Leave a comment

Windows 10: Requires Azure login during OOBE setup

Posted on 2023-03-13 by guenni

Windows[German]It's a story that came to my attention recently, though the behavior may be familiar to many administrators. An administrator had purchased a refurbished machine and then re-installed it with Windows 10 Pro. But even as it was being reinstalled, the machine was prompting the user to log into Azure, with a Klarna Bank AB account …

Continue reading

Posted in Windows | Tagged | Leave a comment

Monitors on Dell Thunderbolt docking station not active after reboot

Posted on 2023-03-12 by guenni

[German]Quick note to owners and administrators of Dell docking stations connected to notebooks via Thunderbolt. A reader informed me about problems with the WD22TB4, in connection with Dell notebooks (5530, 5430, 5431). After a reboot, monitors attached to the docking station remain inactive and cannot be activated. The remedy is to change the Thunderbolt port. Dell told this user that they are already working on this issue. But it seems to affects other vendors also.

Continue reading

Posted in devices, issue | Tagged , , | 2 Comments

Windows 10/11: "Mock Folders" as UAC bypass security disaster, leverage Applocker and SRP

Posted on 2023-03-11 by guenni

Windows[German]Windows 10, Windows 11 (and also their server counterparts) contain a huge flaw that may lead to a security disaster. Attackers can create "mock folders" and store malware there. This alows to run malware with administrator rights (without a UAC prompt). Security features like AppLocker or Software Restriction Policies (SRP or SAFER for short) are probably no longer effective either. Is known to security circles, the issue has now come into my radar through an attack.

Continue reading

Posted in Security, Windows | Tagged , | 1 Comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Vulnerabilities in Bitwarden password manager browser extension can reveal passwords

Posted on 2023-03-10 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Users of the Bitwarden password manager run into the risk of the auto-fill feature leaking credentials when visiting websites. Malicious websites could steal credentials via an IFRAME embedded in trusted pages and send them to an attacker.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Defender Update KB2267602 (v1.383.1400.0 and above) drops install error 0x80070643 – reports low memory

Posted on 2023-03-10 by guenni

Update[German]Quick question for Windows users and administrators – and specifically for Windows Server administrators – did you encounter Windows Defender signature updates installation errors within the last couple of hours? I'm receiving more and more reader reports that Defender update KB2267602 (versions 1.383.1400.0  and beyond) are causing install errors and is failing. Update: There are workarounds.

Continue reading

Posted in Security, Software, Update, Windows | Tagged , , , | 4 Comments

Cyber attack on logistics service provider – Production at German Airbus site Nordenham partially affected

Posted on 2023-03-10 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Currently (March 8, 2023), production at the Airbus site in Nordenham/Germany seems to be halted (at least in parts). The background to this seems a cyber attack on the logistics service provider (named by my informants as LTS), whose systems probably have been affected by ransomware. Without the systems of this logistics service provider, production at the Airbus plants will probably no longer be possible in the long term. Currently, however, I do not have any confirmation from the logistics service provider. But several sources and Airbus have confirmed the information.

Continue reading

Posted in Security | Tagged | Leave a comment

Veeam fixes critical vulnerability CVE-2023-27532 in Backup & Replication V11a/V12

Posted on 2023-03-09 by guenni

Amazon[German]A small note for users of the backup software from the manufacturer Veeam. As of March 7, 2023, Veeam has fixed a critical vulnerability (CVE-2023-27532) in its Backup & Replication product in versions V11a/V12 via an update. The update via a cumulative update should be applied promptly. Update: There is now an exploit, exploitation likely soon.

Continue reading

Posted in Security, Software, Windows | Tagged , , | Leave a comment

Fortinet March 2023 Security Advisory

Posted on 2023-03-08 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Administrators of Fortinet's FortiOS and FortiProxy must become active. The manufacturer has published various security advisories for different products as of March 7, 2023. Among other things, a DoS vulnerability CVE-2022-45861 in FortiOS and FortiProxy are addressed. Some of the vulnerabilities are very critical (CVSSv3 score 9.3).

Continue reading

Posted in Security, Software | Tagged , | Leave a comment