Microsoft certificates misused to sign malware (Dec. 2022)

Posted on 2022-12-16 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Security researchers have come across cases where cybercriminals have managed to sign malware-infected Windows drivers using valid digital certificates from Microsoft. This allows the malware to trick the check for a digital signature under Windows. Several threat actors seem to be involved in the abuse of Microsoft's digital signature. However, Microsoft has released updates on patchday in December 2022 to detect the affected (driver) files and eliminate attacks.

Continue reading

Posted in Security, Windows | Tagged , , | Leave a comment

Windows Server 2019/2022: December 2022 security updates cause Hyper-V issues

Posted on 2022-12-15 by guenni

Windows[German]The security updates rolled out by Microsoft on the December 2022 patchday lead to problems with Hyper-V in certain constellations. New VMs can no longer be created, existing VM have problems with Ethernet connections, etc. Microsoft has admitted to these problems, although only Windows Server 2019 as well as Windows Server 2022 are said to be affected.

Continue reading

Posted in issue, Update, Virtualization, Windows | Tagged , , , , , | 2 Comments

.NET updates (Dec. 13, 2022) fixes vulnerability CVE-2022-41089, but causing issues

Posted on 2022-12-15 by guenni

Update[German]As of December 13, 2022 (Patchday), Microsoft has also released updates for .NET 7.0.1, .NET 6.0.12 and .NET Core 3.1.32. These are intended to address the CVE-2022-41089 vulnerability, which allows remote code execution. But because the update makes changes to the way WPF-based applications render XPS documents, there are problems with applications that use WPF. However, Microsoft has published a support article KB5022083 including two workarounds.

Continue reading

Posted in issue, Security, Software, Update | Tagged , , , | Leave a comment

Google Chrome Version 108.0.5359.124/.125

Posted on 2022-12-15 by guenni

Chrome[German]Google has released Google Chrome version 108.0.5359.124/125 in the stable channel for Mac, Linux and Windows on December 13, 2022. These updates close eight vulnerabilities, some of which are rated high, and probably fix bugs. Thanks to reader EP for pointing this out. In addition, the Chrome Android app has also received an update.
Continue reading

Posted in Android, browser, Security, Software, Update | Tagged , | 2 Comments

Patchday: Microsoft Office Updates (December 13, 2022)

Posted on 2022-12-15 by guenni

Update[German]On (November 8, 2022 (second Tuesday of the month, Microsoft Patchday), Microsoft released several security-related updates for still-supported Microsoft Office versions and other products. The updates are available for the installable MSI version of Microsoft Office (the click-to-run packages obtain the updates through other channels). Office 2019 does not appear in the list because it is distributed via click-to-run packages and receives security updates via the Office Update feature. Below is an overview of the available updates.

Continue reading

Posted in Office, Security, Update | Tagged , , , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Windows 7/Server 2008 R2; Windows 8.1/Server 2012 R2: Updates (December 13, 2022)

Posted on 2022-12-14 by guenni

Windows[German]Microsoft has released security updates for Windows 7 and 8.1 as well as for the Windows Server counterparts 2008 R2 and 2012/R2 on Patchday. Here is an overview of these updates for Windows 7/8.1 and the corresponding Windows Server versions 2008 R2 and 2012/R2.

Continue reading

Posted in Security, Update, Windows | Tagged , , , | Leave a comment

Patchday: Windows 11/Server 2022-Updates (December 13, 2022)

Posted on 2022-12-14 by guenni

Windows[German]On December 13 (second Tuesday of the month, Microsoft patch day), Microsoft also released cumulative updates for Windows 11 22H1 and 22H2. In addition, Windows Server 2022 received an update. Here are some details about these updates, which are supposed to fix vulnerabilities as well as issues.
Continue reading

Posted in Security, Software, Update, Windows | Tagged , , , , | Leave a comment

Patchday: Windows 10-Updates (December 13, 2022)

Posted on 2022-12-14 by guenni

Windows[German]On December 13, 2022 (second Tuesday of the month, Patchday at Microsoft), several cumulative updates were released for the supported Windows 10 builds (from RTM version to current version) as well as for the Windows Server counterparts. Here are some details on the respective security updates for Windows 10.

Continue reading

Posted in Security, Update, Windows | Tagged , , , | Leave a comment

Microsoft Security Update Summary (December 13, 2022)

Posted on 2022-12-14 by guenni

Update[German]On December 13, 2022, Microsoft released security updates for Windows clients and servers, for Office, etc. – as well as for other products – released. The security updates fix 49 vulnerabilities, 6 of which are classified as critical, and two 0-day vulnerabilities, one of which is already being exploited. Below is a compact overview of these updates released on patchday.

Continue reading

Posted in Office, Security, Software, Update, Windows | Tagged , , , , , | Leave a comment

Thunderbird 102.6.0

Posted on 2022-12-13 by guenni

[German]The developers of Thunderbird have released another update of the email client to version 102.6.0 on December 13, 2022 (thanks to the reader for pointing this out). It's a bug-fix update that should fix some issues.

Continue reading

Posted in Security, Software, Update | Tagged | Leave a comment