Sophos Intercept X Install or Update ends with HTTP Error 403 (May 6, 2022)

Posted on 2022-05-06 by guenni

Stop - Pixabay[German]Brief information for administrators of a Sophos Intercept X endpoint solution. The vendor seems to be informing its customers about a serious problem. After a fresh installation of Sophos Intercept X Endpoint for Windows or an update, sus.sophosupd.com is no longer accessible, but reports an HTTP Error 403. In the meantime, Sophos has published a corresponding advisory (KB-000043980 dated May 6, 2022) about this problem. Here is some information about this issue.

Continue reading

Posted in issue, Security, Software, Update | Tagged , | Leave a comment

Apple, Google, Microsoft support new initiative of the FIDO Alliance for "Passwordless Sign-Ins

Posted on 2022-05-06 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Yesterday, May 5, was "World Password Day" – and from this point of view, the announcement of the FIDO Alliance to make the Internet more secure and usable for everyone is only logical. The FIDO Alliance and the World Wide Web Consortium have developed a procedure for password-free user logon. Apple, Google and Microsoft, with the FIDO Alliance on May 5, 2022, have now announced plans to expand support for a common standard for passwordless logins that builds on the FIDO solution. The new feature is intended to enable websites and applications to offer consistent, secure and simple passwordless logins to users across all devices and platforms. Microsoft plans to release certain features as early as May and June 2022 for Windows and Microsoft Authenticator.

Continue reading

Posted in Android, Cloud, ios, macOS, Security, Windows | Tagged , , , | Leave a comment

TLStorm 2.0: 5 critical vulnerabilities in network switches from Aruba and Avaya

Posted on 2022-05-06 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Network switches from Aruba and Avaya are vulnerable to RCE attacks due to 5 vulnerabilities. Security researchers from Armis, a company specializing in networked devices, who discovered the vulnerabilities call them "TLStorm 2.0" – because there was already the TLStorm case (I had published this article TLStorm: 3 critical 0-day vulnerabilities put APC Smart UPS at risk on the original discovery of the TLStorm vulnerability in smart UPS units).

Continue reading

Posted in devices, Security | Tagged , | Leave a comment

Chrome v101.0.4951.54 caused certificate errors

Posted on 2022-05-06 by guenni

[German]Google has released the Google Chrome 101.0.4951.54 update for Windows and Mac on the desktop in the Stable Channel as of May 2, 2022 (see Chrome 101.0.4951.54 fixes GPO bug). This build does fix the Group Policy issue (see comments on the post Chrome 101.0.4951.41 fixes 30 Vulnerabilities – but has a GPO bug). But version 101.0.4951.54 has a problem with some certificates. Users got an ERR_CERTIFICATE_TRANSPARENCY_REQUIRE visiting some web sites. In the meantime, however, this error should be fixed now.

Continue reading

Posted in browser, issue | Tagged , | Leave a comment

10-year-old vulnerabilities in Avast and AVG put millions of users at risk

Posted on 2022-05-05 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Security researchers at Sentinel One have discovered two serious vulnerabilities in Avast and AVG's security products that have been around for 10 years and put millions of users at risk. The vulnerabilities are in Avast's anti-rootkit driver (which is also used by AVG). Attackers can use the vulnerabilities to take over the Windows system.

Continue reading

Posted in Security, Software | Tagged , , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Microsoft Office Updates (May 3, 2022)

Posted on 2022-05-05 by guenni

[German]On May 3, 2022 (first Tuesday of the month), Microsoft releases non-security updates for still-supported versions of Microsoft Office. This month, however, there are only updates for Microsoft Office 2016, which fixes issues in Access 2016, among others. Here is a short overview.

Continue reading

Posted in Office, Update | Tagged , | Leave a comment

Thunderbird Version 91.9.0

Posted on 2022-05-04 by guenni

[German]The developers of the Thunderbird email client have released Thunderbird 91.9.0 as of May 3, 2022. This is a maintenance update for the 91 development branch. Thanks to Tom for pointing this out.

Continue reading

Posted in Software, Update | Tagged | Leave a comment

Windows 11: Preview Update KB5012643 causes issues with .NET Framework 3.5 applications

Posted on 2022-05-04 by guenni

Windows[German]The preview update KB5012643 for Windows 11, released on April 25, 2022, turns out to be a real problem bear. First there were display problems in Safe Mode, which had to be corrected by KIR. Now it turns out that the preview update also causes problems with .NET Framework 3.5 applications. Microsoft has also confirmed this in the meantime and tried to give hints on how the update can still be uninstalled.

Continue reading

Posted in issue, Windows | Tagged , , , | Leave a comment

Chrome 101.0.4951.54 fixes GPO bug

Posted on 2022-05-04 by guenni

[German]Google has released the Google Chrome 101.0.4951.54 update for Windows and Mac on the desktop in the Stable Channel as of May 2, 2022. This version fixes the Group Policy issue (see post Chrome 101.0.4951.41 fixes 30 Vulnerabilities – but has a GPO bug). The post in question can be found on the Google blog. The Chrome version for Windows, Mac and Linux will be rolled out to systems via the automatic update feature in the next few days. One can also update the browser manually (via the menu and the About Google Chrome command). The latest build of the Chrome browser can also be downloaded here.

Posted in browser, Linux, macOS, Update, Windows | Tagged , | Leave a comment

Apple's Safari has an Outlook TokenFactoryIFrame issue (May 2022)

Posted on 2022-05-04 by guenni

[German]Apple users are currently experiencing a problem when trying to access an Outlook mailbox via OWA in Safari. A TokenFactoryIFrame is downloaded every few seconds. I think the problem has only been occurring for a few days. I've seen also users claiming this for Chrome on iPads. It seems, that Microsoft has to fix this issue.

Continue reading

Posted in ios, issue, macOS, Office | Tagged , , , , , | 2 Comments