Windows 11: "Defender trouble" due to updates KB5022845 and KB5022913 (app startup hangs)

Posted on 2023-03-07 by guenni

Windows[German]Quick note for blog readers who are running Windows 11 22H2. It looks like Microsoft has changed something internally with the February 2022 update KB5022845 and the Moments 2 update KB5022913, which is currently available as a preview. Users who have deactivated Windows Defender and have not installed any other virus protection may run into the problem that applications start slower or even hang completely after the update installation. However, there is a workaround to fix this.

Continue reading

Posted in issue, Update, Windows | Tagged , , , | 3 Comments

Windows 11 22H2: "Continous innovation delivery" will be shipped in March 2023

Posted on 2023-03-07 by guenni

Windows[German]In addition to preparing the Windows Insider Program for testing Windows 12, Microsoft just announced another new feature. With the March 2023 update, a new approach for Windows 11 22H2 called "continuous innovation delivery" will come into effect. In this way, Microsoft wants to tip innovations "under the table" onto the user systems via Windows Update.

Continue reading

Posted in Update, Windows | Tagged , | Leave a comment

Microsoft's new Windows Insider Canary Channel – Preparing for Windows 12?

Posted on 2023-03-07 by guenni

Windows[German]Microsoft has just announced that there will be a new Canary Channel in the Windows Insider program. What sounds like "even more chaos" might indicate that Redmond is preparing a playground for Windows Insiders to test Windows 12, which is expected sometime in 2024. Here is what we know so far about that. Continue reading

Posted in Windows | Tagged , | 1 Comment

Europol took action against DoublePaymer cyber gang

Posted on 2023-03-06 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]International investigators and law enforcement (FBI, Europool, German LKA, etc.) have succeeded in identifying members of a cybergang that operated under the names "DoppelSpider" and "DoppelPaymer". The cybergang was responsible for ransomware attacks on companies and the University Hospital in Düsseldorf or the UK health system. Multiple targets in Germany and Ukraine has been raided last Tuesday. Law enforcement also issued international arrest warrants for three suspects with Russian backgrounds.

Continue reading

Posted in Security | Tagged | Leave a comment

Security: DJI drones and it's AeroScope vulnerabilities

Posted on 2023-03-06 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Drones from the Chinese manufacturer DJI have vulnerabilities that allow third parties to read radio traffic and determine the location of the drone pilot. This vulnerability comes from a monitoring feature called AeroScope (DroneID), developed by the manufacturer for "law enforcement agencies", which allowed them to determine the location of the pilot at a distance of up to 50 km. This has been known for a year, but DJI wrotes, the DroneID protocol used for this is encrypted now. However, security researchers have proven that these "assurances of the manufacturer" are simply wrong. In addition, German security researchers have uncovered other vulnerabilities in various DJI drones, made public on March 3, 2023, that allow a drone's serial number to be altered or the aircraft to crash. This causes trouble for companies and individuals who use such drones.

Continue reading

Posted in devices, Security | Tagged , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Critical vulnerability CVE-2023-0656 in SonicWall firewalls

Posted on 2023-03-05 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]SonicWall has issued a security alert SNWLID-2023-0004 as of March 2, 2023. Several applications are at risk from critical vulnerability CVE-2023-0656. A stack-based buffer overflow vulnerability in SonicOS allows an unauthenticated attacker to remotely cause a denial of service (DoS) that can crash an affected firewall.

Continue reading

Posted in Security, Software, Update | Tagged , , | Leave a comment

Citrix about "Perpetual licenses": Customers should rather take out a subscription

Posted on 2023-03-05 by guenni

Are Citrix customers who still have perpetual licenses run into problems? The manufacturer is now trying to force these customers into a subscription with its "Universal License". In the medium term, customers with perpetual licenses will have a harder time getting updates.

Continue reading

Posted in Software | Tagged | Leave a comment

DCOM hardening (CVE-2021-26414) on March 14, 2023 patchday for Windows 10/11 and Server

Posted on 2023-03-05 by guenni

Windows[German]Just a reminder for administrators of Windows in enterprise environments. There is a vulnerability in Microsoft's Windows DCOM implementation (Windows DCOM Server Security Feature Bypass, CVE-2021-26414) that allowed security features to be bypassed. Microsoft documented this in 2021, and patched it then, closing this vulnerability in stages. Recently, I was reminded that Microsoft will release a final patch on March 14, 2023 that will remove the ability to disable this DCOM hardening.

Continue reading

Posted in Security, Update, Windows | Tagged , , | Leave a comment

Tiny 11: Unclutter Windows 11 Pro shown in a video

Posted on 2023-03-05 by guenni

Windows[German]A little Sunday topic for readers who are using Windows 11 or are looking at this platform and are in need for a "Leightweigt Windows 11". There is a project called Tiny 11, where a hobbyist has stripped of all the bloatware that Microsoft ships with a Windows 11 Pro. The system is slim and runs smoother than the Windows 11 delivered by Microsoft. The hobbyist has shown in a video what he has removed and optimized for Tiny 11.

Continue reading

Posted in Windows | Tagged | 2 Comments

Busted: Instagram influencer with 40 million followers uses Russian Zeus bot

Posted on 2023-03-05 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[English]Security researchers have come across an open Cassandra database instance that probably contained data from the Russian website instarobot.pro. The website is known for offering services for spamming and botting on Instagram under the name Zeus. The records also included a reference to an Instagram influencer with 40 million followers using the Russian Zeus bot.

Continue reading

Posted in Security | Tagged | Leave a comment