CISA Warning: New APT Cyber Tools Targets ICS/SCADA Systems

Posted on 2022-04-17 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]There is a warning from CISA and other organizations in the U.S. aimed at manufacturers and operators of process control systems and controllers (ICS/SCADA systems). Cyber groups (APTs) have developed new attack tools with which they can attack various industrial control systems. Since there is now a certain trend to only destroy in these attacks, the risk of industrial sectors or critical infrastructure being crippled by (government) cyber actors is increasing.

Continue reading

Posted in devices, Security | Tagged | Leave a comment

Microsoft Edge 100.0.1185.44 Emergency Patch

Posted on 2022-04-16 by guenni

Edge[German]Microsoft has updated the Chromium Edge browser to version Edge 100.0.1185.44 as of April 15, 2022. This is an emergency update that closes the CVE-2022-1364 vulnerability (see also this page and the blog post Chrome 100.0.4896.127 fixes 0-day vulnerability CVE-2022-1364). The browser should update automatically, but can also be downloaded here. Thanks to the blog readers (German, English) for the hints.

Posted in browser, Security, Software, Update | Tagged , | Leave a comment

Comments on NGINX vulnerabilities in LDAP reference implementation (April 2022).

Posted on 2022-04-16 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]On April 9, 2022, 0-day exploit exploiting vulnerabilities in LPAP NGINX implementation became known. Spontaneously the question came up if you have to react now if you use NGINX in your environment. A blog reader sent me a note the other day about what to watch out for in this regard. Here is a quick overview of this issue.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Spring4Shell Vulnerability: Analysis and Mirai Botnet uses Spring4Shell

Posted on 2022-04-16 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]A vulnerability called Spring4Shell in the Java Spring Framework has been known for a few days. VMware has been providing patches for its products since the beginning of April 2022. It is now known that the Mirai botnet exploits the Spring4Shell vulnerability to infect systems. In addition, I came across a brief analysis from Trend Micro on the Spring4Shell vulnerability.

Continue reading

Posted in Security | Tagged | Leave a comment

Chrome 100.0.4896.127 fixes 0-day vulnerability CVE-2022-1364

Posted on 2022-04-15 by guenni

[German]Google has released updates to Google Chrome 100.0.4896.127 for Android, as well as for Windows and Mac on the desktop in the stable channel as of April 14, 2022. The update closes the 0-day vulnerability CVE-2022-1364, for which an expliit already exists.

Continue reading

Posted in Android, browser, Security, Update, Windows | Tagged , , , | 2 Comments

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

MS-Patchday wrap-up: Issues with April 2022 updates

Posted on 2022-04-15 by guenni

Windows[German]The security updates Microsoft released on April 12, 2022, has closed numerous vulnerabilities. In particular, the vulnerability CVE-2022-26809 is security-critical and should be patched promptly. The password loop caused by the March 2022 preview updates has also been fixed. But there are also issues: Remote Desktop Gateway roles on Windows Server 2022 break, Edge or Chrome may fail to start in Windows 11, and there are installation errors in Windows Server 2012 (caused by antivirus solutions).

Continue reading

Posted in issue, Update, Windows | Tagged , , | 1 Comment

Security: Best Practice, for updating Windows Domain Controllers

Posted on 2022-04-15 by guenni

Windows[German]Enterprise environments often deploy Windows servers that act as domain controllers (DCs). Domain controllers are still a central part of the infrastructure for many companies (despite the trend toward the Azure cloud, according to Microsoft). And the identities stored in Active Directory are often the target of attackers. How can you best secure domain controllers in terms of updates? Microsoft has published some thoughts on that.

Continue reading

Posted in Security, Windows | Tagged , , | Leave a comment

Windows 11 22H2: ISO of Insider Preview Build 22598 available

Posted on 2022-04-14 by guenni

Windows[German]Microsoft released Windows 11 Insider Preview build 22598 on April 13, 2022 (see this announcement with details on the Windows Blog). Now Microsoft has released an ISO image file of this Windows 11 preview for Windows Insiders. This ISO can be downloaded in the desired variant via the download area of the Windows Insider program. The condition is that you are registered in the Windows Insider program.

Posted in Windows | Tagged | Leave a comment

Windows Server 2022: Update KB5012604 breaks Remote Desktop Gateway

Posted on 2022-04-14 by guenni

Windows[German]A brief note for administrators who are already running Windows Server 2022 in their environment. The update KB5012604 released by Microsoft on April 12, 2022 continues to cause problems. After its installation, the Remote Desktop Gateway can no longer be used. This continues the bug introduced by a security update in March 2022.

Continue reading

Posted in issue, Update, Windows | Tagged , , , | 1 Comment

Patchday: Microsoft Office Updates (April 12, 2022)

Posted on 2022-04-14 by guenni

Update[German]On April 12, 2022 (second Tuesday of the month, Microsoft Patchday), Microsoft released several security-related updates for still-supported Microsoft Office versions and other products. Here is an overview of the available updates.

Continue reading

Posted in Office, Security, Update | Tagged , , , | Leave a comment