Cisco drama: Critical vulnerabilities in small business routers (Feb. 2022)

Posted on 2022-02-06 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Customers of Network supplier Cisco and its customers are currently at risk. Cisco has published a security notice regarding its small business routers (SMB) on February 2, 2022, which is quite something. There are several security holes in their firmware, three of which CVEs have been classified as critical with an index of 10/10. It probably affects Cisco small business routers of the RV160, RV260, RV340 and RV345 series.

Continue reading

Posted in devices, Security | Tagged , | Leave a comment

COBOL market: Three times larger than expected

Posted on 2022-02-06 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Good job persepectives for experts who still learned COBOL as a programming language in the 1960s and 1970s. In a recent survey, Micro Focus, a provider of enterprise software, examined the market opportunities for application modernization of COBOL code. The surprising result: the market for COBOL appears to be three times larger than previously expected. And it is not foreseeable that COBOL applications will be replaced in a hurry.

Continue reading

Posted in Software | Tagged , | Leave a comment

Microsoft disables MSIX ms-appinstaller protocol handler in Windows (Feb. 2022)

Posted on 2022-02-05 by guenni

Windows[German]After ransomware like Emotet or BazarLoader abused the MSIX ms-appinstaller protocol handler, Microsoft has now reacted again. The entire MSIX ms-appinstaller protocol handler has been disabled in Windows for the time being – more or less as protection against Emotet, BazarLoader or similar malware. This is now the second measure after being patched in December 2021.

Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

Edge 98.0.1108.43

Posted on 2022-02-04 by guenni

Edge[German]Microsoft has updated the Chromium Edge browser to version 98.0.1108.43 as of February 3, 2022 (thanks to the reader for pointing this out). It is a new development branch that keeps up with Google Chrome (see Chrome 98.0.4758.8x released, 27 vulnerabilities fixed), but also fixes vulnerabilities. Microsoft has introduced new features and new group policies with Edge 98.

Continue reading

Posted in browser, Software, Update, Windows | Tagged | Leave a comment

Windows Server 2019: Is Update KB5010791 causing a Boot Loop?

Posted on 2022-02-04 by guenni

Update[German]Question for the administrators of Windows Server 2019 systems: What are your experiences regarding the January 11, 2022 updates and boot loops. On Domain Controllers, the boot loops are well known, but Microsoft has released out-of-band updates with a fix. But I have now received reports that a Windows Server 2019 running stably so far with update KB5009557 had forced the servers into a boot loop with update KB5010791. Continue reading

Posted in issue, Update, Windows | Tagged , , , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Windows: ESET virus scanners have a LPE vulnerability

Posted on 2022-02-04 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Slovakian antivirus vendor ESET has issued a warning for users of its Windows products. Certain antivirus products have a Local Privilege Escalation (LPE) vulnerability CVE-2021-37852 in older versions. This allows a local attacker to gain SYSTEM privileges from a default account. However, ESET now provides security updates to close the vulnerability.

Continue reading

Posted in Security, Software, Windows | Tagged , | Leave a comment

Cyberattack on Oiltanking: Black Cat ransomware group responsibe, also for Colonial Pipeline Hack

Posted on 2022-02-03 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]An addendum to the cyberattack of Saturday, January 29, 2022 on Oiltanking, a company belonging to the Hamburg-based Marquard & Bahls group, and the IT of Mabanaft, an oil trader belonging to the same group. The crippled parts of the critical infrastructure (CRITIS), because the loading systems of Oiltanking no longer work, have their cause in an infection with the Black Cat ransomware. And that's where it gets interesting, because it seems to be the same cybercriminals who were responsible for the ransomware attack on Colonia Pipeline in the US in 2021

Continue reading

Posted in Security | Tagged , | Leave a comment

admin.microsoft.com and Office 365 Admin Center down (Feb. 3, 2022)

Posted on 2022-02-03 by guenni

Stop - Pixabay[German]Microsoft's admin.microsoft.com sub-domain is down, which means that many admin centers for Microsoft services (Office 365, etc.) are no longer accessible. Here is a quick overview of what is known so far. Addendum: It seems to affect Europe, Middle East and Africa. The cause is also hinting – an update to the cloud stuff went wrong. Microsoft is rolling everything back and hopes to fix the problem with that.

Continue reading

Posted in Cloud, issue | Tagged , | Leave a comment

Chrome 98.0.4758.8x released, fixes 27 vulnerabilities

Posted on 2022-02-03 by guenni

[German]Google has released updates to Google Chrome 98.0.4758.80/81/82 for Windows and 98.0.4758.80 for Mac and Linux on February 1, 2022. The Android browser has been updated to version 98.0.4758.87 and the iOS version to 98.0.4758.85. The updates close 27 vulnerabilities. Some vulnerabilities are classified as High. Here is a brief overview.

Continue reading

Posted in browser, Security, Software, Update | Tagged , , | Leave a comment

Microsoft Office Updates (February 1, 2022) fixes Access issues

Posted on 2022-02-03 by guenni

[German]On February 1, 2022 (first Tuesday of the month, Office Patchday), Microsoft releases non-security updates for still-supported versions of Microsoft Office. This month, there are updates for Microsoft Office 2013 and 2016 that address the Access issue of only one user being able to open a database. Here's a brief overview.

Continue reading

Posted in issue, Office, Update | Tagged , , | Leave a comment