[German]Does anyone use a Citrix ADC or Citrix Gateway in an enterprise environment? Vulnerability CVE-2022-27509 has been discovered in the products, which allows an attacker to create a specially crafted URL that redirects to a malicious website. Citrix has published a security advisory about this.
[German]Security reasearchers have discovered six serious serioud vulnerabilities in the MV720 GPS trackers from MiCODUS, which are frequently used in vehicles. Security researchers have managed to hack the trackers so that the vehicles' location data could be monitored by third parties. And the attackers would even be able to stop the vehicles remotely. The manufacturer was notified, but would not fix the problem. The US CISA warns against the devices – users are advised to remove them because of the security risks.
[German]Security researchers from Kaspersky have tracked down a malware that was hidden in the UEFI firmware of various mainboards from ASUS and Gigabyte. The Chinese malware, CosmicStrand, is said to have been undetected in the UEFI of the affected motherboards since at least 2016.
[German]Mozilla's developers have released on July 26, 2022 the versions 91,2 and 102.0 as ESR version and the new 103.0 version of the Firefox browser. Firefox 103 is a new development branch, and the ESR versions are maintenance updates.
[German] has released an optional cumulative (preview) update KB5015878 as of July 26, 2022 (D-Week). This is intended to fix numerous bugs in Windows Server version 20H2 as well as Windows 10 version 20H2 – 21H2. Below I provide an overview regarding these updates for Windows 10.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]In Windows 11, some users experienced problems with the Start menu, where the Start button stopped responding. The problem is related to the update KB5014668 from June 23, 2022, but can also occur through subsequent updates. In the meantime, Microsoft has confirmed the problem and is rolling back the corresponding fixes via Known Issues Rollback (KIR). However, administrators in affected enterprise environments will have to help out with group policies.
[German]Microsoft has confirmed that there can be problems with USB printers under Windows 10 version 20H1 to 21H2. Either there is trouble with the printer configuration or it is not possible to print to a device. I had reported such problems after the July 2022 patchday. However, the cause of these problems is already the preview update KB5014666 from June 28, 2022, but also subsequent updates contain the bug. In a support post, Microsoft not only reveals details, but also suggests workarounds to fix it.
[German]Another topic for administrators responsible for using a Microsoft Active Directory (AD) in the enterprise. Rumor has it that many companies rely on Microsoft's AD for their IT in business operations. The stuff has been on the market for 20 years and is arguably quite reliable. But what about security? According to security vendor Semperis, 20-year-old AD technology presents some security challenges.
[German]Brief information for users of Microsoft Access, who suffer since weeks from an Access ACCDE/MDE bug introduced by update. The error when using forms that the requested class library or wizard is not a VBA project is patched by Microsoft. Now the release dates for these fixes are fixed.
[German]Do yo use the Microsoft Endpoint Manager Admin Center (formerly SCCM and Intune) to manage clients? Then you should make sure that the MEMCM infrastructure (MEMCM=Microsoft Endpoint Manager Configuration Manager) is updated to CB2203 via hotfix before July 27, 2022. Otherwise, there will be errors because certificate informations have not been renewed.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
