In performance regression testing, VMware testers found a severe performance drop for Linux guests when running kernel 5.19 in a VMware ESXi virtual machine with the Retbleed fixes installed. The degradation was up to 70% for computing, up to 30% in networking, and up to 13% in memory usage. Details can be found in this post. (via)
[German]Trend Micro warns of various vulnerabilities, including a remote execution vulnerability (RCE), in its security solution Trend Micro Apex One. This vulnerability in the endpoint security solution is said to be already exploited. However, Trend Micro has released an update to its software that addresses the vulnerability. Administrators using Trend Micro Apex One should update this software in a timely manner.
[German]The Court of Justice of the European Union issued a decision on Wednesday, September 14, 2022, regarding the fine imposed by the EU Commission on Google or its parent Alphabet. In Case T-604/18, the court largely upheld the Commission's decision that Google imposed unlawful restrictions on Android mobile device manufacturers and mobile network operators in order to strengthen the dominant position of its search engine.
[German]Phone systems from Canadian manufacturer Mitel that are used in companies are being attacked by ransomware from the Lorenz Group. Arctic Wolf Labs suspects that Lorenz Ransomware Group has exploited the CVE-2022-29499 vulnerability to compromise Mitel MiVoice Connect systems to gain initial access. After that, the system can be taken over to encrypt it and extort victims. Administrators should update the phone system software to the latest version.
[German]Microsoft has also released security updates for Windows 7 and 8.1 as well as for the Windows Server counterparts 2008 R2 and 2012/R2 on Patchday. Here is an overview of these updates for Windows 7/8.1 and the corresponding Windows Server versions 2008 R2 and 2012/R2.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]On September 13 (second Tuesday of the month, Patchday at Microsoft), Microsoft also released a cumulative update for Windows 11, which will be released on October 5, 2021. The update is supposed to fix various problems. In addition, Windows Server 2022 received an update. Here are some details about these updates.
[German]On September 13, 2022 (second Tuesday of the month, Patchday at Microsoft), several cumulative updates were released for the supported Windows 10 builds (from RTM version to current version) as well as for the Windows Server counterparts. Here are some details on the respective security updates.
[German]On September 13, 2022, Microsoft released security updates for Windows clients and servers, for Office, etc. – as well as for other products – were released. The security updates also eliminate 63 vulnerabilities, 5 of which are critical and one 0-day vulnerability. Below is a compact overview of these updates released on patchday.
[German]US vendor Cisco was, after all, the victim of a ransomware attack by the Yanluowang group, which was also made public. Now, the group has started to publish data of the company that was captured during this attack. Cisco has since issued a statement on this new release. So far, there are no findings that very sensitive data impacting the company's business was captured or published.
[German]There are six serious vulnerabilities in the firmware of HP systems for the business sector (notebooks, desktops, etc.) that have not been fixed by updates for a year. There are still no firmware updates for some HP enterprise systems, although they have been publicly known for a month. That's according to the security team at Binarly, which discussed some of these vulnerabilities in HP EliteBooks at the Black Hat 2022 conference.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
