Warning: Sophos XG firewall vulnerability CVE-2022-3236 under massive attack

Posted on 2022-10-07 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]A few hours ago, information came to my attention on Twitter that the RCE vulnerability CVE-2022-3236 in Sophos XG Firewalls is under massive attack. I had reported about the vulnerability in September 2022 and recommended patching it immediately. Here are some notes on the recent warning and a reference to the blog post in question.

Continue reading

Posted in Security | Tagged | Leave a comment
Advertising

Windows 11 22H2: Provisioning packages may not work as expected

Posted on 2022-10-06 by guenni

Windows[German]Microsoft had released the next rollout phase for the feature update to Windows 11 version 22H2 (as Windows 11 2022 Update). The stuff is to be distributed more broadly. Then on October 5, 2022, Microsoft followed up with a warning for administrators in the enterprise environment that the announced that provisioning packages may not work as expected.

Continue reading

Posted in Windows | Tagged , | Leave a comment

German security vendor DCSO finds Maggie backdoor in MS SQL servers

Posted on 2022-10-06 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Technical threat research experts from German security firm DCSO recently came across a new type of backdoor. Dubbed Maggie, the malware targets Microsoft SQL servers, and an analysis found hundreds of infected installations worldwide. Here is a brief overview of the state this discovery.

Continue reading

Posted in Security, Software | Tagged , , , | Leave a comment

Microsoft Outlook bug after update: Outlook Contacts "People" view hides window

Posted on 2022-10-06 by guenni

[German]Microsoft has once again created a nice bug in the Click-2-Run version of Office 2016 – 2021. After updating to version 2209 (build 15629.20156) the contact window in the person view covers half of the Outlook window. The window cannot be closed. Microsoft has confirmed the bug – there is also a trick to mitigate the problem.

Continue reading

Posted in issue, Office | Tagged , , | 1 Comment

Firefox 105.0.2

Posted on 2022-10-06 by guenni

Mozilla[German]Mozilla developers have released versions 105.0.2 of the Firefox browser on October 4, 2022. This is a maintenance update, which is supposed to fix bugs.

Continue reading

Posted in browser, Update | Tagged | 1 Comment
Advertising

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Edge 106.0.1370.34

Posted on 2022-10-06 by guenni

EdgeMicrosoft has updated the Edge browser in the stable channel to version 106.0.1370.34 as of October 3, 2022. The Release Notes state a more reliable web protection changes to the Microsoft address bar.

Posted in browser, Update | Tagged | 2 Comments
Advertising

EU Parliament votes for USB-C as a standard charging cable

Posted on 2022-10-06 by guenni

[German]On October 4, 2022, the European Parliament overwhelmingly approved the introduction of the USB-C interface as a common charging port for a wide range of electronic devices. This will then also affect Apple's devices such as the iPhone and AirPods. The uniform EU charging standard is then to be introduced by the end of 2024.

Continue reading

Posted in devices | Tagged | Leave a comment

Windows 11 22H2 rollout in new phase

Posted on 2022-10-05 by guenni

Windows[German]On September 20, 2022, Microsoft had released the feature update to Windows 11 version 22H2 (as Windows 11 2022 Update). Now Microsoft has announced on October 4, 2022 that a new rollout phase has begun. More users with compatible machines can check for the feature update and should be offered it.

Continue reading

Posted in Update, Windows | Tagged | Leave a comment
Advertising

Exchange Server: Microsoft updates it's mitigation for the 0-day ProxyNotShell vulnerability (October 5, 2022)

Posted on 2022-10-05 by guenni

Exchange Logo[German]It's becoming somewhat like a never-ending story. Two 0-day vulnerabilities (CVE-2022-41040, CVE-2022-41082) in Microsoft's on-premises Exchange Servers (2013, 2016, and 2019) have been known since late September 2022. The vulnerabilities, known as ProxyNotShell, are already being exploited in the wild. Since the vulnerabilities became known, Microsoft has been trying to publish workarounds for protection. During the night (on October 5, 2022), the URI rewrite rules were updated to protect against attacks because the original rules could be circumvented. But that's not sufficient, the new rule can be bypassed too. Here's an overview of the latest developments, and administrators should respond. Continue reading

Posted in Security, Software | Tagged | Leave a comment

Microsoft Office Updates (Oktober 4, 2022)

Posted on 2022-10-05 by guenni

[German]As of October 4, 2022 (first Tuesday of the month), Microsoft has released non-security updates for versions of Microsoft Office that are still supported. This month, there are updates for Microsoft Office 2013 and 2016, fixing an Excel issue that has been nagging for weeks. Here's a brief overview.

Continue reading

Posted in Office, Update | Tagged , | Leave a comment