VMware closes vulnerabilities, DHS gives U.S. federal agencies 5 days to patch

Posted on 2022-05-20 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German] VMware has fixed a critical bug in several of its products through updates. The vulnerability, CVE-2022-22972, allows administrative access without authentication and affects the Workspace ONE Access, VMware Identity Manager (vIDM) and vRealize Automation products. The U.S. Department of Homeland Security (DHS) cybersecurity division issued a directive to U.S. agencies to update or remove VMware products affected by vulnerabilities CVE-2022-22972 and CVE-2022-22973 from their networks within five days.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Windows 11 21H2 in broad rollout, 22H2 coming soon, new desktop search for Insiders, and more

Posted on 2022-05-19 by guenni

Windows[German]There's a lot going on with Windows 11 these days – and the new version 22H2 could be ready in the next few days. In addition, Microsoft has released the previous Windows 11 version 21H2 for broad distribution on May 17, 2022. A Windows 11 ISO file is available for download for Windows Insiders. At the same time, Microsoft is experimenting with Insiders with a new desktop search – the search box is found on the desktop – but forces users to view search results in Microsoft Edge, regardless of which browser is used as the default. Time, for an overview post around these Windows 11 issues.

Continue reading

Posted in Windows | Tagged | Leave a comment

Microsoft observed attacks on Microsoft SQL Server via PowerShell

Posted on 2022-05-19 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]The Microsoft security team is currently warning about a campaign in which unknown attackers are targeting Microsoft SQL databases. Although a brute force approach is used to crack the database access. What is new is that the campaign uses the sqlps.exe tool in conjunction with PowerShell scripts.

Continue reading

Posted in Security, Software | Tagged , , | Leave a comment

Windows 10 21H2: Does Update KB5014023 fixes profile issues caused by May 2022 patches?

Posted on 2022-05-19 by guenni

Windows[German]Question for Windows 10 users: Is anyone experiencing issues with user profiles on Windows 10 21H2 after installing the May 10, 2022 security updates? Microsoft may already be working on a fix, which is being tested with Windows Insiders via update KB5014023. Here is, what a reader experienced so far.

Continue reading

Posted in issue, Update, Windows | Tagged , , | 5 Comments

Bluetooth Low Energy vulnerability and the Tesla car theft

Posted on 2022-05-18 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]There is a vulnerability in the Bluetooth Low Energy implementation that allows remote access to corresponding Bluetooth devices (door locks, electronic devices and cars). Among others, the US car manufacturer Tesla had to admit that its electric car models Tesla Model 3 and Tesla Y can be unlocked, started and thus stolen in this way.

Continue reading

Posted in Security | Tagged | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

0Patch fixes vulnerabilities (CVE-2022-26809 and CVE-2022-22019) in Windows

Posted on 2022-05-18 by guenni

Windows[German]The ACROS Security team around founder Mitja Kolsek has released a micro patch to close the Remote Procedure Call Runtime Integer Overflows vulnerabilities CVE-2022-26809 and CVE-2022-22019). The patch is available for Windows 7 SP1, Windows Server 2008 R2, up to Windows 10 (v1803 to v2004). The micro-patch is available for all customers with the 0patch agent who own a Pro or Enterprise license of ACROS Security. Here is some information about it.

Continue reading

Posted in Security, Windows | Tagged , , | Leave a comment

Active Directory Admins: May 2022 updates may force DCs to a boot loop (AltSecID attribute set on krbtgt)

Posted on 2022-05-18 by guenni

Windows[German]Today a short information for administrators of Active Directory Domain Controllers under Windows Server, who still have to apply the security updates for May 2022. I have come across the information that there is a bug that leads to nasty problems in Windows Server in certain configurations (which should not actually occur). Administrators should pay attention to the configuration of the AltSecID attribute on the krbtgt account before installing the update. If this attribute is set, a boot loop of the DC is imminent and the Active Directory is down. I'll post the information I picked up yesterday from a Windows Escalation Engineer and since on Twitter here.

Continue reading

Posted in issue, Update, Windows | Tagged , , , , , | Leave a comment

Researchers: Malware can run on iPhones that are switched off

Posted on 2022-05-18 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]A smartphone that is switched off is not off – we know this from movies where batteries are removed from smartphones and the devices are placed in a refrigerator or tin cans. It is certainly possible to run malware on an iPhone that is switched off. Security researchers from Darmstadt have just proven this in an experiment. It's a bit tricky and requires Bluetooth, NFC chips etc. in an iPhone – but it works.

Continue reading

Posted in devices, Security | Tagged , | Leave a comment

Nvidia security updates for Kepler GTX 700/600 GPU WHQL driver (473.47) released

Posted on 2022-05-17 by guenni

Update[German]Nvidia has released a security update for the graphics driver of the Kepler GeForce GPUs on May 16, 2022, as you can read on this website. The new GeForce WHQL driver has the version 473.47 and is available for Windows 10 (64 bit) as well as Windows 11. The manufacturer writes that the security update has been released for the desktop Kepler-series GeForce GPUs, which are no longer supported by Game Ready drivers. This update fixes issues that can lead to several security compromises. Details can be found on the linked website and in the release notes.  (via)

Posted in Software, Update, Windows | Tagged , , , | Leave a comment

CISA warns against installing May 2022 updates on Windows Domain Controllers

Posted on 2022-05-17 by guenni

Windows[German]US CERT CISA (Cybersecurity & Infrastructure Security Agency) has temporarily removed vulnerability CVE-2022-26925 from its Known Exploited Vulnerabilities catalog and warns US organizations not to install the May 2022 updates for Windows on machines that act as domain controllers. This is in response to authentication issues related to the updates and DCs.

Continue reading

Posted in issue, Security, Update, Windows | Tagged , , , , | Leave a comment