Microsoft Security Update Revisions (March 31, 2022)

Posted on 2022-04-01 by guenni

Windows[German]Microsoft has issued a Security Update Revisions on March 31, 2022, because CVE-2022-23295 (Raw Image Extension Remote Code Execution Vulnerability) has undergone a revision increment. The reason for Revision of the CVE from March 8, 2021 (which is quoted as important): Added platform designations to Security Updates table because the version of the raw extension is different for Windows 10 operating systems and Windows 11 operating systems. This is an informational change only.

Posted in Security | Tagged | Leave a comment

USA: Sanctions against Kaspersky could increase cyber risk from Russia

Posted on 2022-04-01 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Interesting report from the Wall Street Journal regarding the Russian antivirus provider Kaspersky. The proposal from the White House to sanction Russian security vendor Kaspersky over the invasion of Ukraine is dividing the Biden administration. Some members of the staff fear that sanctioning Kaspersky Lab could increase the risk of a Russian cyber attack. The background is that Kaspersky products are still widely used.

Continue reading

Posted in Security | Tagged | Leave a comment

Security updates: iOS 15.4.1 and macOS Monterey 12.3.1

Posted on 2022-04-01 by guenni

[German]Apple has released two security updates for macOS 12.3.1 (Monterey) and iOS/iPad OS 15.4.1. These patches close vulnerabilities CVE-2022-22675 (in AppleAVD for iOS and macOS) and CVE-2022-22674 in the macOS Intel graphics driver. Apple has received reports that the vulnerabilities are already being actively exploited. Details can be found in the linked articles. Arstechnica has published this article on the topic.

Posted in ios, macOS, Security, Update | Tagged , , | Leave a comment

Rumor: Microsoft supports "Windows Mode" in Linux

Posted on 2022-04-01 by guenni

[German]This is a cool thing that Microsoft and the Linux developer community around Linus Torvalds are planning for the future. Up to now, Microsoft's developers have been tinkering with a Windows Subsystem for Linux (WSL) in Windows, so that the poor Windows users were allowed to practice a bit of Linux in a console. Linux will eventually get a clean Windows subsystem so that Linux users will finally be able to use Windows 32 applications without any problems.

Continue reading

Posted in Linux, Windows | Tagged , | 2 Comments

Got lost in Defender? There is something like a Defender Cheat Sheet available

Posted on 2022-04-01 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Indiscreet question to the readers of this blog: Do you still have an overview of exactly what Microsoft is currently doing with its Defender? I confess that I got lost a long time ago and get confused when blogging because Windows Defender still slips into my texts instead of Microsoft Defender for Endpoint (I hope that's still correct). I have just come across a cheat sheet helping to survive the jungle of Microsoft Defender terms.

Continue reading

Posted in Security | Tagged , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

New security feature allows driver block lists in Windows 10, 11 and Windows Server

Posted on 2022-03-31 by guenni

Windows[German]Microsoft is working on improving the protection of the current versions of Windows 10, Windows 11 and Windows Server 2016 and their successors against harmful drivers. For this purpose, Windows Defender Application Control (only available in Enterprise editions) or HVCI or the S-Mode will support a driver block list with which the execution of drivers can be controlled and, if necessary, prevented.

Continue reading

Posted in Security, Windows | Tagged , , | Leave a comment

Vulnerabilities in Wyze Cam IoT camera firmware (March 2022)

Posted on 2022-03-31 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Security researchers from Bitdefender are drawing attention to vulnerabilities they have discovered in the firmware of Wyze CAM IP video cameras. According to Bitdefender, attackers can bypass the authentication process, gain complete control over the device and read information and configuration data from the camera's SD card or install malicious code. The gap can be closed with an update starting with the Wyze Cam V2. However, patching is not possible for the first version of the camera.

Continue reading

Posted in devices, Security | Tagged , , | 1 Comment

motionEyeOS: People who want to continue the project wanted

Posted on 2022-03-31 by guenni

[German]motionEyeOS is a Linux distribution that turns your single-board computer into a video surveillance system. However, the developer of motionEyeOS can no longer actively work on this project for personal reasons, as he writes. If anyone is interested in taking on the project, they should contact the developer.

Continue reading

Posted in Linux | Tagged , | Leave a comment

World Backup Day 2022

Posted on 2022-03-31 by guenni

AmazonToday, 31 March 2022, is World Backup Day again – a good time to think about what an effective data backup strategy needs to do. A lot has changed in recent years! More and more data is hosted in the cloud, ransomware is one of the biggest threats to data today.

Continue reading

Posted in General | Tagged | Leave a comment

Microsoft warns of (fixed) Defender spoofing vulnerability

Posted on 2022-03-31 by guenni

Sicherheit (Pexels, allgemeine Nutzung)Microsoft has sent a security alert by mail as of 30 March 2022, with a warning about a the vulnerability CVE-2022-23278. This is a spoofing vulnerability in Microsoft Defender for Endpoint, which has already been closed in Android and iOS as of 8 March 2022. As of 30 March, Microsoft advises users to ensure devices have received the latest update.

Continue reading

Posted in Security | Tagged , | Leave a comment