[German]Are Microsoft Exchange servers on the current patch level still vulnerable via the remote code execution vulnerability CVE-2022-23277? Some fragments of information have just come to my attention that at least raise questions. In any case, the disclosure of the details that led to the vulnerability is interesting. I'll try to summarize the information as best as I can.
[German]Mozilla's developers have released the versions 102.0 (also as ESR version) as well as the 91.11esr of the Firefox browser on June 28, 2022. Firefox 102 is a new development branch, while 91.11esr is a maintenance update that fixes critical vulnerabilities.
[German]Microsoft has revised its description of CVE-2021-26414 (Windows DCOM Server Security Feature Bypass) to June 28, 2022. It has added security updates for Windows 10 version 21H2, Windows 11 and Windows Server 2022, as these Windows versions are also affected by this vulnerability. Microsoft urges users to install the updates and notes that RPC_C_AUTHN_LEVEL_PKT_INTEGRITY on DCOM servers will be enabled by default as a result of the update.
[German]Microsoft has released an optional cumulative (preview) update KB5014666 on June 28, 2022 (D-Week). This is supposed to fix numerous bugs in Windows Server version 20H2 as well as Windows 10 version 21H1 – 21H2. In addition it brings new print functions. Below I give an overview regarding these updates for Windows 10.
[German]apetito AG, a German baded food manufacturer (with international subsidiaries) of frozen menus, menu components and supplier for schools, daycare centers, hospital kitchens, has become a victim of a cyber attack. Nothing is working on their IT systems at the moment – apart from a concise information on the company website, the manufacturer has not communicated anything so far. Here is some information about it.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Victims of Hive ransomware may hope to decrypt their encrypted files. This is because Korean security researchers have succeeded in developing a decryptor for versions 1 to 4 of this Hive ransomware. This was possible because there was a vulnerability in the encryption that could be exploited.
[German]The manufacturer Bizerba (scales), located in Baden-Württemberg, Germany, has become a victim of a cyber attack during the night of Monday (June 27, 2022). As a result of this attack, all IT systems of this manufacturer were shut down worldwide. Too many details are not yet known, as internal IT is working with forensic experts to examine how the attackers were able to get in. Employees and customers are said to have been informed about the incident.
[German]Microsoft had released the preview updates KB5014019 (Windows 11, May 24, 2022) and KB5014021 (Windows Server 2022, May 24, 2022) and KB5014023 (Windows 10, Windows Server, June 2, 2022) to fix various bugs. However, those who installed the updates ran the risk of tabs suddenly freezing in Microsoft Edge. Microsoft has now corrected this problem via Known Issues Rollback (KIR) and rolled back the fixes.
[German]Windows 11 was released on October 5, 2021 – but the announcement including the first Insider Preview was made on June 24, 2021 (see Yes, Microsoft introduced Windows 11). So you can say that Windows 11 is now one year old. In the meantime, Microsoft is already working on the fine-tuning of Windows 11 22H2, which should be rolled out as an upgrade in fall 2022. Right from the start, Microsoft's harsh hardware requirements separated the user community. Hence the question of how you judge Windows 11 now.
The European Space Agency (ESA) announced this week that the MARSIS instrument on ESA's Mars Express spacecraft will receive a major software upgrade. This should enable better research results with the nearly 2-decade-old Mars probe. The remarkable thing is that the software for the instrument was developed using Windows 98 at the time.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
