Google releases details of CVE-2022-41128 vulnerability in Internet Explorer, exploited by ScarCruft hackers

Posted on 2022-12-09 by guenni

[German]Security researchers at Google Threat Analysis Group (TAG) have published details of a (then 0-Day) vulnerability in Internet Explorer's JavaScript engine that was discovered on October 31, 2022. This 0-Day was probably actively exploited by North Korean hackers to attack targets in South Korea via compromised Word documents. The CVE-2022-41128 vulnerability will be closed with Microsoft's security updates for Windows on November 8, 2022 (Patchday).
Continue reading

Posted in browser, Security, Update, Windows | Tagged , , , , | Leave a comment

Windows 11 22H2: Secure Boot DBX Update KB5012170 (Dec. 2022)

Posted on 2022-12-09 by guenni

Windows[German]Brief information for users of Windows 11 22H2. Microsoft has distributed the Secure Boot DBX update KB5012170 probably again on December 6/7, 2022 for Windows 11 version 22H2. This update had been released on Patchday, August 9, 2022 to fix issues in Secure Boot DBX. However, this update caused significant problems with Bitlocker for some users, up to systems no longer booting. There may also be problems with the current update.

Continue reading

Posted in Update, Windows | Tagged , | 2 Comments

Vulnerabilities in connected cars allow remote access at Honda, Nissan, Infiniti, Acura, etc.

Posted on 2022-12-09 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Modern vehicles are equipped with a lot of electronics and software so that they can access various functions as conveniently as possible. However, security researchers have identified serious weaknesses in vehicles from Honda, Nissan, Infiniti and Acura. In the U.S., the vehicle number (VIN) visible in the windshield is sufficient to crack such vehicles remotely, open them and then drive off with them.

Continue reading

Posted in General, Security | Tagged , | Leave a comment

Google Chrome version 108.0.5359.98/99 as bug fix update, warning about CVE-2022-4262

Posted on 2022-12-08 by guenni

Chrome[German]Google has updated Google Chrome in the 108 branch in the Stable Channel for Mac, Linux, and Windows, as well as the Extended Stable Channel, as of December 7, 2022. Thanks to reader EP for pointing this out. In addition, security organizations are warning users to update Google Chrome to at least version 108.0.5359.94/.95 as the closed vulnerability is being exploited. Continue reading

Posted in browser, Update | Tagged , | 1 Comment

Windows 11: Input Experience consumes 20% CPU power in File Explorer

Posted on 2022-12-08 by guenni

Windows[German]Windows 11 already needs a lot of resources with its "little balconies and optical gimmicks". Especially the so-called "Input Experience" puts a strain on the CPU – I've read about 20% CPU resource consumption in Explorer. But with a small registry intervention this Input Experience can be deactivated if necessary.

Continue reading

Posted in General | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Ransomware attack responsible for Rackspace Exchange instance outage in Dec. 2022

Posted on 2022-12-07 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]At the beginning of December 2022, there was an outage of the Exchange instances of the US provider Rackspace that lasted several days. Now the company has confirmed that a ransomware attack on its servers was the reason for this outage. It is unclear whether customer data was affected by this incident. There is at least a suspicion that the ProxyNotShell vulnerabilities enabled this attack.

Continue reading

Posted in Security | Tagged | Leave a comment

Details of the vulnerability in NETGEAR Nighthawk WiFi6 Router (RAX30 AX2400)

Posted on 2022-12-07 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Netgear has released a last-minute patch to close a vulnerability in the firmware of the Nighthawk WiFi6 router (RAX30 AX2400) on December 1, 2022. A misconfiguration allowed attackers in router firmware prior to version V1.0.9.90 to communicate with these devices from the Internet as if they were on the consumer's local network. In addition, the firmware's auto-update function seems to be broken. Security provider Tenable has now published details about this.

Continue reading

Posted in devices, Security | Tagged , | Leave a comment

Microsoft Office Updates (December 6, 2022)

Posted on 2022-12-07 by guenni

[German]As of December 6, 2022 (first Tuesday of the month), Microsoft has released non-security updates for versions of Microsoft Office that are still supported. This month, there is only one update for Microsoft Office 2016. Microsoft Office 2013 has not received any updates. Here is a brief overview of the November 2022 updates.

Continue reading

Posted in Office, Update | Tagged , | Leave a comment

Windows: November 2022 updates cause ODBC connection problems with SQL databases

Posted on 2022-12-06 by guenni

Update[German]It looks like the Windows updates released by Microsoft in November 2022 may cause problems accessing SQL databases. Then the ODBC driver triggers a database access error. According to Microsoft, all Windows versions that are still supported (both clients and servers) are affected by this problem. There is no solution for this problem yet.

Continue reading

Posted in issue, Update, Windows | Tagged , , , | 1 Comment

Vulnerability in Citrix Workspace App for Windows allows password theft

Posted on 2022-12-06 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Citrix is warning users since September 2022 about a vulnerability in its Citrx Workspace app. There are reports that Citrix SSON stored passwords in the process memory can be retrieved at the user level. Updates are provided in the December 2, 2022 update to close the vulnerability. However, it looks like the information is still accessible for administrator accounts.

Continue reading

Posted in Security | Tagged , | Leave a comment