0-day vulnerability CVE-2022-26134 in Atlassian Confluence Software

Posted on 2022-06-03 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Security researchers from Volexity discovered a 0-day vulnerability (CVE-2022-26134) in Atlassian Confluence software over the weekend. This vulnerability is being actively exploited – this is what brought the issue to the attention of the security researchers. Currently, the urgent advice to administrators responsible for maintaining Atlassian Confluence software (server, data center) is to ensure that this product is not accessible via the Internet – or, if in doubt, shutdown the server. Addendum: A fix is available. And there is now a public exploit.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Windows 10 21H1 – 21H2/Server 20H2: Preview Update KB5014023 (June 2, 2022) with bug fixes

Posted on 2022-06-03 by guenni

Windows[German]Microsoft has released the optional cumulative (preview) update KB5014023, scheduled for May 2022 (D-Week), on June 2, 2022 (severely delayed). This is supposed to fix numerous bugs in Windows Server version 20H2 as well as Windows 10 version 21H1 – 21H2. Below I provide an overview regarding these updates for Windows 10.

Continue reading

Posted in Update, Windows | Tagged , | Leave a comment

Microsoft Edge 102.0.1245.30 has issues with PDF printing

Posted on 2022-06-03 by guenni

Edge[German]Microsoft Edge 102.0.1245.30, released on May 31, 2022 is a security update to close a number of vulnerabilities. But I got reports that this Edge version breaks PDF printing in Windows 10/11. It's simply no longer possible for some users to print PDF documents. Only a downgrade helps. And there is a workaround developed by blog readers, using GPO settings. So administrators in companies probably should delay the rollout and test it intensively.

Continue reading

Posted in browser, issue, Software, Update, Windows | Tagged , , , | 4 Comments

Canon MX492 All-in-one devices are restarting repeatly with WiFi/Internet connection

Posted on 2022-06-02 by guenni

Stop - Pixabay[German]Short information about a possible problem with Canon All-in-one printing devices. There are reports from users that Canon Pixma MX492 (and other Canon) printers suddenly cause issues when there is a Wi-Fi connection to a network with Internet access. Without a Wi-Fi connection (or Internet access), there are no issues. It seems that a DNS issue is the root cause of device restarts. And the question is whether anyone else is affected? Addendum: Canon provides a firmware update to fix that issue.

Continue reading

Posted in devices, issue | Tagged , | 65 Comments

SearchNightmare: Windows 10 search-ms: URI Handler 0-day Exploit with Office 2019

Posted on 2022-06-02 by guenni

Windows[German]Following the discovery of the Follina vulnerability exploit (CVE-2022-30190) via the Windows ms-msdt protocol, this bastion is being "stormed". A hacker looked at the search-ms: URI handler in Windows 10 and developed an exploit similar to Follina. With the help of Office 2019, he can open Windows Search via the protocol handler. Colleagues at Bleeping Computer have already coined the term SearchNightmare for this 0-day exploit.

Continue reading

Posted in Office, Security, Windows | Tagged , , | 1 Comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Facebook manager Sheryl Sandberg steps down and leaves Meta

Posted on 2022-06-02 by guenni

She was the number 2 behind Marc Zuckerberg, the Facebook manager Sheryl Sandberg. After 14 years in the service of this social media company, Sandberg now announced that she is stepping down and leaving the company.

Continue reading

Posted in General | Tagged | Leave a comment

0Patch Micro patch against Follina vulnerability (CVE-2022-30190) in Windows

Posted on 2022-06-02 by guenni

Windows[German]The ACROS Security team around founder Mitja Kolsek has released a micro-patch to close the 0-click Microsoft Diagnostic Tool remote code vulnerability (CVE-2022-30190, Follina). The micro-patch is available for all customers with Windows and the 0patch agent free license. Here is some information about it.

Continue reading

Posted in Security, Windows | Tagged , , | 1 Comment

Follina vulnerabilitiy (CVE-2022-30190): Status, Findings, Warnings & Attacks

Posted on 2022-06-01 by guenni

Windows[German]Since the weekend, a new Windows vulnerability CVE-2022-30190 in combination with Microsoft Office has been knows under the name Follina. In the meantime, the US CISA and also the BSI have warned about this vulnerability – while security researchers have observed the first attacks via this 0-day vulnerability by Chinese APTs. Meanwhile, it is also clear that this attack works without Microsoft Office. The CVE-2022-30190 vulnerabilities could become the next big thing in security if anti-virus solutions also detect infected documents. Here's an overview of the latest findings.

Continue reading

Posted in Office, Security, Windows | Tagged , , | 2 Comments

Flubot Android Trojan infrastructure shut down by Europol

Posted on 2022-06-01 by guenni

Paragraph[German]The Android banking Trojan Flubot caused major damage to victims on Android systems since 2021. The last major campaign was reported a few days ago. Now Europol seems to have managed to shut down the infrastructure of the Flubot Android Trojan. Whether this will stop the business model is another matter.

Continue reading

Posted in Android, Security | Tagged , , , | Leave a comment

Microsoft 365: Activation issues with Windows Pro Enterprise (May 31, 2022)

Posted on 2022-06-01 by guenni

Windows[German]Quick question for administrators in the enterprise environment who manage Microsoft 365 licenses (volume licenses, E3/E5). Are you currently experiencing problems with Windows Pro systems no longer activating or losing activation? I have received indications from the readership regarding this issue – and it is probably not an isolated case – may be a certificate issue.

Continue reading

Posted in issue, Windows | Tagged , | 9 Comments