[German]The British newspaper "The Guardian" has fallen victim to a cyberattack. The publisher suspects a ransomware attack, but is probably still able to continue its work and produce the paper online. Employees are being asked to work from the home office.
[German]It's a strange bug that a blog reader just reported to me in the terminal server environment with Office. In a constellation under Windows Server 2022, reproducible display errors occur under Microsoft Office during an installation with Remote Desktop Services (RDS). In certain display constellations all text characters in a Word window disappear after some time. But there is a workaround, so I'll post it in the blog, maybe there are more affected people.
[German]The German encryption service Boxcryptor is being over taken by Dropbox. New customers are already no longer accepted – subscriptions expire and the service has done itself in as an "encryptor" for cloud uploads. A German blog reader informed me, that Boxcryptor has begun to inform users, that free ccounts will be shut down on January 31, 2023.
Continue reading
[German]Security researchers at CrowdStrike have discovered a new exploit method for the NotProxyShell vulnerabilities CVE-2022-41080 and CVE-2022-41082 while analyzing several Play ransomware cases. The ransomware uses a new exploit method to bypass Microsoft's URL rewrite rules (in response to ProxyNotShel) for Autodiscover. The exploit allows remote code execution (RCE) via Outlook Web Access (OWA) and is then used to infect vulnerable Exchange servers. The new exploit method is referred to as OWASSRF. Addendum: CERT-EU has added the new exploit method to it's 0-day Exchange exploit list.
[German]The hotel chain H-Hotels has fallen victim to a cyber attack. As a result, the hotel chain's internal and external communication is currently only available to a limited extent. However, bookings and hotel operations of the group should continue to be possible. So far, the company assumes that no customer data has been leaked in this attack, which took place over the weekend. Addendum: The Play ransomware group took responsibility and has published a statement.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]The security updates rolled out by Microsoft on the December 2022 patchday lead to problems with Hyper-V in certain constellations. New VMs can no longer be created, existing VMs have problems with Ethernet connections, etc. Microsoft has now released a special update (out-of-band update) for Windows Server 2019 as well as Windows Server 2022 to fix the problem.
Continue reading
[German]Amazon has reached a settlement with EU antitrust authorities in a competition case involving allegations that Amazon is hindering competition on its platform by using non-public data. Amazon has pledged to treat all sellers equally and make competitors' products more visible in Amazon's "Buy Box," which generates the bulk of purchases on the site.
[German]The security updates from November 8, 2022 for Windows, caused Direct Access connection issues. Microsoft had already confirmed this for Windows 10 and Windows 11 as of November 13, 2022, and wrote, that preview updates from October 2022 was the root cause of the problem. As an emergency measure, the problem created by the update could be rolled back via KIR. Now Microsoft has provided a final fix with the December 13, 2002 security updates.
[German]The materials division of thyssenkrupp AG has been the victim of a cyber attack, the company has announced. The attack was detected by the company's IT, with defensive measures currently taking place. This is because the attack is still ongoing, the company said. The materials division (Materials Services), the company's largest business unit in terms of revenue, is probably affected. A crisis team is currently trying to gain an overview.
[German]Users of a mechanical Corsair K100 keyboard complain that it "types" words or sentences by itself. However, the fears of some users that a keylogger or a malware is causing that behavior are not true. According to the manufacturer, it is simply a firmware bug that will eventually replay texts typed by the user and find it's was into the keyboard's macro recorder.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
