Warning: Critical Vulnerabilities in VMware Products (April 6, 2022)

Posted on 2022-04-08 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Just yesterday, in the blog post VMware patches Spring4Shell RCE vulnerability CVE-2022-22965, I warned about a vulnerability in certain VMware products. Now the manufacturer has followed up and warns about critical vulnerabilities in various VMware products. This affects Workspace ONE Access, VMware Identity Manager (vIDM), vRealize Lifecycle Manager, vRealize Automation and VMware Cloud Foundation products. Security updates to close the vulnerabilities are available.

Continue reading

Posted in Security, Software, Update | Tagged , , | Leave a comment

Speaker Gate: Audio output distorted on the Samsung Galaxy S22

Posted on 2022-04-08 by guenni

[German]Some of the proud owners of a Samsung Galaxy S22 smartphone are facing a problem. The speakers of Samsung's flagship keep emitting unintelligible sounds, and people have to switch to a headset or earphones to understand audio output. The problem sometimes occurs after flights. The problem is bizarre, as "put the smartphone in the fridge for a few hours" or "open the SIM slot for a moment" are traded as workarounds. It seems that the problem of the speakers is caused by a lack of pressure compensation in the casing.

Continue reading

Posted in devices, issue | Tagged , | Leave a comment

Cicada: Chinese hackers abuse the VLC player for espionage via DLL side-loading, among other things

Posted on 2022-04-07 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Security researchers from Symantec have tracked down a malware campaign (Cicada) that has been running for years. A Chinese state-affiliated hacker group is abusing legitimate applications such as VLC Player to inject malware into systems via DLL side-loading. The goal is to spy on the systems of victims working in government, legal, religious, and non-governmental (NGO) sectors on at least three continents.

Continue reading

Posted in Security | Tagged , | 1 Comment

Atlassian: Jira-/Confluence outage affects customers since April 5, 2022

Posted on 2022-04-07 by guenni

Stop - Pixabay[German]Atlassian's Jira platform, popular with many companies, has been down for what seems like hours. This is causing trouble for all customers who need access to the Atlassian Jira Bug System. There, information about security problems and other sensitive details are collected and processed. Currently, only a short peak was reported on allestoerungen.de as of today, April 7, 2022, since 8:23 am. However, if I catch it, the Jira servers have been down for over 24 hours.

Continue reading

Posted in Cloud, issue | Tagged , | Leave a comment

FBI Dismantles Cyclops Blink Botnet of Sandworm Group Working for Russian Intelligence Agency (GRU)

Posted on 2022-04-07 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[English]The U.S. Department of Justice (DOJ) has just announced the dismantling of the Cyclops Blink botnet, which is attributed to the cyber group Sandworm. Sandworm is a name for a hacking group working for the Russian intelligence service (GRU). Here is the currently available information released by the DOJ.

Continue reading

Posted in Security | Tagged | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

VMware patches Spring4Shell RCE vulnerability CVE-2022-22965

Posted on 2022-04-07 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Virtualization specialist VMware has released security updates for various virtualization products. These are intended to close the remote code execution (RCE) vulnerability called Spring4Shell in these products. Cloud products that use virtualization are particularly at risk. Here is an overview of this issue.

Continue reading

Posted in Security, Software, Virtualization | Tagged , | Leave a comment

Windows 11: Windows 365 Cloud PC will be integrated, new Explorer and more

Posted on 2022-04-06 by guenni

Windows[German]On April 5, 2022, Microsoft outlined the future roadmap for Windows 11. Thus, the Windows 365 Cloud PC will be integrated into Windows 11, i.e. it will not only be possible to run corresponding instances (as remote sessions) via app or in the browser, but it should be possible to boot the machine directly into Windows 365 Cloud PC at some point (i.e. use it as a thin client with direct login). Also, a new file explorer with tabs will be coming (has been in Insider testing for a while).

Continue reading

Posted in Windows | Tagged | Leave a comment

Microsoft Office Updates (April 5, 2022)

Posted on 2022-04-06 by guenni

[German]On April 5, 2022 (first Tuesday of the month), Microsoft releases non-security updates for still-supported versions of Microsoft Office. This month, however, there are only updates for Microsoft Office 2016. Here is a brief overview.

Continue reading

Posted in Office, Update | Tagged , | Leave a comment

WordPress 5.9.3 released

Posted on 2022-04-06 by guenni

As of April 5, 2022, the developers have released WordPress 5.9.3. It is a maintenance update that includes 9 fixes in Core and 10 fixes in the Block Editor. Details about the fixes can be found in the release notes.

Posted in Software, Update | Tagged | Leave a comment

Firefox 99.0 and 91.8.0esr released

Posted on 2022-04-05 by guenni

Mozilla[German]Mozilla Mozilla developers have released versions 99.0 and 91.8.0esr of the Firefox browser on April 5, 2022. This is a new development branch of Firefox 99, with the update fixing vulnerabilities according to the Security Advisory. Thanks to 1ST1 for the tip.

Continue reading

Posted in browser, Security, Update | Tagged , , | Leave a comment