[German]The vendor zebNet has discovered a critical vulnerability in various products that allow a man-in-the-middle attack (MITM) in the update process of the affected application. The night I was then contacted by the manufacturer by mail and asked to publish the whole thing here in the blog. The background: Informing customers about the vulnerability is proving difficult.
[German]Cisco has released security updates this week to close a highly classified vulnerability (CVE-2022-20653) in its email security appliances. Attackers were able to crash the e-mail security appliances via prepared e-mails and thus virtually launch a DoS attack. Affects Cisco AsyncOS software versions 14.0, 13.5, 13.0, 12.5 and older on Cisco ESA devices when DANE is enabled.
[German]Interesting findings from a survey of 1,100 security specialists as part of a study with regard to the security of industrial systems and critical infrastructure in Europe. The message of the study was that industrial control systems and operating technology in Europe were attacked by ransomware almost as frequently as IT systems. One in two victims experienced significant disruption as a result of these attacks.
[German]Microsoft is once again experimenting a lot with the online requirement for upcoming Windows versions. The cat was let out of the bag in the Insider Preview of Windows 11: An Internet connection is mandatory for installation in the OOBE phase. And only Microsoft accounts are then provided for setting up user accounts. By the way, this refers to the Windows 11 Pro variants. This means that scenarios that have been feared time and again are slowly becoming reality.
[German]On February 17, 2022, Mozilla developers released version 97.0.1 as a maintenance update of the Firefox browser to correct various bugs.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Der Sicherheitsanbieter Trend Micro hat zum 15.2.2022 das Update 2390 für seine Worry Free Business Security (WFBS) freigegeben. Der Patch aktualisiert den Apache Web-Server auf Version 2.4.5 und behebt diverse Problemein der Virenschutzlösung. Um diesen Patch zu installieren, muss genügend freier Festplattenspeicher (13 GByte oder mehr) auf dem Systemlaufwerk vorhanden sein.
[German]Owners of a Microsoft Surface Book 3 should be careful installing a Feb. 2022 firmware update on these devices at the moment. I have information that the combination of certain firmware updates can lead to real issues and bricks a device (device no longer boots, drives disappear).
Microsoft has sent me a mail with various revisions of security updates as of February 17, 2022. These revisions are only informal, as the classification of certain vulnerabilities has changed. Here is the uncommented overview, which relates to Microsoft Office for Macs.
[German]The developers of the Chrome and Firefox browsers are currently worrying about whether there will soon be problems with web pages that can then no longer be displayed properly. The background is that the major version of these browsers will soon reach three digits (100) due to the fast update cycles. Websites that check the browser agent string for the browser version could then cause trouble.
[German]22 years ago, on February 17, 2000, Microsoft released the further development of Windows NT under the name Windows 2000 – internally the part was called Windows NT 5.0. Brings tears to my eyes when I look at the system requirements: Pentium processor with 133 MHz, 64 MB RAM, a 2 GB hard disk with at least 650 MB free space and a CD-ROM drive. And with that part we could somehow just work – no need for online accounts, a start menu that worked, and, and, and. Long time ago. Details have been collected by the guys and gals at Wikipedia.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
