[German]Those responsible for Linux VMs under Microsoft Azure need to react immediately. Management agents have been silently installed, that have RCE and LPE vulnerabilities. The vulnerability, called OMIGOD, must be patched manually because there is no Azure update mechanism.
[German]On September 14, Microsoft has released various updates for Windows 7 SP1 systems that are still in ESU support. Also with ESU Bypass v11 the whole thing still works. But these security updates are also available for Windows Server 2008 R2 with ESU support. Here is some information about the Monthly Rollup and Security only Updates for this operating system.
[German]On September 14, Microsoft released various updates for Windows 8.1. However, these security updates are also available for Windows Server 2012 R2. Here is some information on the Monthly Rollup and Security only updates for these operating systems.
[German]On September 14, 2021 (second Tuesday of the month, Patchday at Microsoft), several cumulative updates were released for the supported Windows 10 builds (from the RTM version to the current version 21H1). Among other things, there are patches against the MSHTML vulnerability and another PrintNightmare fix. Here are some details about the respective patchday security updates.
[German]On September 14, Microsoft released security updates for Windows clients and servers, for Office, etc. – as well as for other products – were released. These include fixes for PrintNightmare as well as for the MSHTML vulnerability. Below is a compact overview of these updates released on Patchday.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Security researchers from SentinelOne have now found a serious vulnerability in the HP OMEN Gaming Hub. The vulnerability in the HP OMEN gaming software driver allows attackers to gain system privileges. This allows system intrusions and malware injection for non-privileged users. However, Hewlett Packard has already provided an update to close the vulnerability in July 2021. Here is an overview of the issue.
[German]Will Microsoft deliver a security update to close the vulnerability CVE-2021-40444 in the Windows MSHTML library today, September 14, 2021? And most importantly: If a patch is coming, will it close the vulnerability, or is it just a placebo? Since exploits are circulating in underground forums, I would like to summarize the current state of affairs again in a blog post.
[German]Google has released the stable version of Google Chrome 93.0.4577.82 for Windows, Mac and Linux on September 13, 2021. It is a security update that closes 0-day vulnerabilities. Some vulnerabilities are already being exploited. Here's a brief overview of what to expect from the update.
[German]It is a scandal of the first order that has been known for a long time. The Irish Data Protection Commission (IDPC) systematically blocks and delays proceedings against US giants such as Google, Facebook, etc. for violations of the General Data Protection Regulation (GDPR). The whole thing has been publicly named several times by data protection activists and other European data protectors. But the EU Commission stands idly by and watches this goings-on. Now the Irish Councile for Civil Liberties (Irish data protection activists) has presented a report that once again proves the systematic sabotage of data protection by the Irish data protection authority IDPC.
[German]Motorcyclists should think twice before buying modern smartphones with image stabilizers and mounting them as a navigator on the machine. iPhones in particular seem to have a problem with vibrations on the machines, as this can permanently damage the camera components for image stabilizer and auto-focus.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
