End of support for Windows 7/8.1 on January 10, 2023, for Windows Server 2012 R2 in October

Posted on 2023-01-10 by guenni

Windows[German]On January 10, 2023, Windows 8.1 and the operating systems Windows 7 SP1 and Windows Server 2008 R2, which have been in the Extended Security Update Program (ESU) for three years, will receive security updates for the last time. Then support for these operating systems will end – at least a little bit – but it is not quite over yet. Windows Server 2012 R2 will still get security updates until October 2023, but the Edge browser will no longer be supported. The following is an overview of what you should know.

Continue reading

Posted in Security, Update, Windows | Tagged , , | 1 Comment

Windows and the "Mark of the Web" (MotW) security problem

Posted on 2023-01-09 by guenni

Windows[German]It was a report the other day that BlueNoroff APT hackers are using new techniques to bypass Windows' "Mark of the Web" protections that prompted me to bring the topic up again on the blog. That's because MotW, as it's called for short, has come up more frequently in recent months – first because Microsoft wouldn't close a MotW vulnerability. And then it released a patch for a vulnerability after all.

Continue reading

Posted in General | Leave a comment

Saudi Arabia: Government Agents Infiltrate Wikipedia, Sentence Independent Wikipedia Administrators to Prison

Posted on 2023-01-08 by guenni

The Saudi Arabian government infiltrated Wikipedia by recruiting the organization's highest ranked administrators in the country to serve as government agents to control information about the country and prosecuting those who contributed critical information about political detainees, said SMEX and Democracy for the Arab World Now (DAWN) today. Following an internal investigation in 2022, Wikimedia terminated all of its administrators in Saudi Arabia in December. DAWN and SMEX documented Wikimedia's infiltration by the Saudi government based on interviews with sources close to the company and the imprisoned administrators.

Continue reading

Posted in General, Security | Tagged | Comments Off on Saudi Arabia: Government Agents Infiltrate Wikipedia, Sentence Independent Wikipedia Administrators to Prison

Set Windows 11 GPO "Enable MPR notifications …" for your security

Posted on 2023-01-08 by guenni

Windows[German]A brief tip for administrators who are so slowly introducing Windows 11 into corporate environments. In the default settings of the operating system, the Winlogon credentials can be read out in plain text using a simple DLL. The new group policy "Enable MPR notifications" is now supposed to prevent this. The whole thing has finally been implemented (after 20 years) in Windows 11 22H2.

Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

ThinkPad X13s: BIOS Update fixes vulnerabilities

Posted on 2023-01-07 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Lenovo has pointed out a number of vulnerabilities in the BIOS of the ThinkPad X13s in a security announcement. These allow memory corruption and information disclosure. A BIOS update is available to close the vulnerabilities.

Continue reading

Posted in computer, Security | Tagged , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

0patch secures Microsoft Edge for Windows 7/Server 2008/2012/R2 until Jan. 2025

Posted on 2023-01-07 by guenni

Edge[German]On January 10, 2023, Windows 7 SP1 and Windows Server 2008/R2 will receive security updates for the last time and will drop out of support. With this, Microsoft will also discontinue support for Edge on Windows 7 SP1, Windows Server 2008/R2 and Windows Server 2012/R2. ACROS Security has announced it will secure the Microsoft Edge browser for at least two years, until January 2025, after the browser is no longer supported by Microsoft on these platforms.

Continue reading

Posted in browser, Security, Windows | Tagged , , | Leave a comment

Windows: Microsoft Workaround for ODBC SQL connection issues (Jan. 5, 2023)

Posted on 2023-01-06 by guenni

Windows[German]Since the release of the November 2022 updates, issues can occur when accessing SQL databases. This has already been admitted by Microsoft. Here on the blog, readers had suggested a workaround in the form of an ODBC driver replacement. Now Microsoft has officially released a workaround for solving the ODBC access problems to SQL databases. Continue reading

Posted in issue, Update, Windows | Tagged , , , , | Leave a comment

Issues restoring backups due to VDM with Intel Core i5 11th generation CPUs

Posted on 2023-01-06 by guenni

Amazon[German]Unusual experience reported to me by a blog reader. He suddenly found himself facing the problem of not being able to write back a backup he had made on his Acer Swift 3 with an 11th generation Intel Core i5. According to the reader, the problem never occurred with the predecessors of this processor. But with some tricks the reader managed to read back the backup. I then did some quick research, it is related to Intel's VDM, which can be used with 11th generation Core i5 CPUs and prevents detection of NVMe SSD IDE devices.

Continue reading

Posted in devices, General, Linux, Windows | Tagged , , , , | Leave a comment

New Bitdefender decryptor for MegaCortex ransomware (Jan. 2023)

Posted on 2023-01-06 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Victims of the MegaCortex ransomware family can now hope to recover their encrypted files. This is because a universal decryptor co-developed by Bitdefender is now available for files encrypted by the MegaCortex ransomware family. With this free tool, victims can make encrypted data from all MegaCortex versions available again. The decryptor is a joint development of Bitdefender, Europol, the NoMoreRansom project, and the public prosecutor's office and cantonal police in Zurich.

Continue reading

Posted in Security | Tagged , , | Leave a comment

Thunderbird IMAP an oAuth connect issue with Exchange Online fixed

Posted on 2023-01-06 by guenni

Just a short note: It seems that Microsoft has fixed an issue, that prevents Thunderbird mail client to connect successful with Exchange Online using IMAP and oAuth2 (see my addendum at Thunderbird can't connect via IMAP an oAuth with Exchange Online (outlook.office365.com)).

Posted in issue, Software | Tagged , , | 1 Comment