[German]Synology has issued a security warning for its products as of August 26, 2021. Multiple vulnerabilities allow remote attackers to perform denial-of-service attacks or execute arbitrary code via a vulnerable version of Synology DiskStation Manager (DSM), Synology Router Manager (SRM), VPN Plus Server or VPN Server. Currently, no product updates seem to be available yet.
[German]Microsoft has published two documents with Security Update Releases and Security Update Revisions as of August 23, 2021. The Security Update Releases affect Chromium browsers such as Edge, and identify vulnerabilities that have been patched. The Security Update Revisions concern various software products such as the .NET Framework. I'm just posting the information on the blog without comment.
[German]I have reported several times on attacks on unpatched on-premises Exchange servers using the ProxyShell method in the blog. Now Microsoft has commented on this in an article and indicates which systems are at risk. In addition, I have received further information from HurricaneLabs, which administrators should be on the lookout for with regard to an infection. Therefore, a summary of the state of affairs once again.
[German]Security researchers at IoT Inspector have found multiple vulnerabilities in a Realtek SDK that allow unauthenticated attackers to fully compromise a device and execute arbitrary code with the highest privileges. The SDK is used by many OEMs to implement WiFi features in devices. Realtek has released an updated version of the SDK, but the code is in numerous IoT devices. At least 65 manufacturers are affected by serious security vulnerabilities, and users face the problem that these devices can be taken over by botnets and attackers.
[German]The developers of the Thunderbird email client have already released another bug fix update on August 26, 2021 (version 91 is still dewy, on August 17, 2021 there was a maintenance and security update to version 91.0.1 and on 8/23/2021 version 91.0.2). Apparently there is no real testing going on anymore. Continue reading
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]VMware has released security updates to address vulnerabilities in several products. An attacker could exploit some of these vulnerabilities to take control of an affected system. VMware vRealize Operations, VMware Cloud Foundation and vRealize Suite Lifecycle Manager are affected. US-CERT has already issued an advisory and is telling people to look at the security advisories in question.
[German]Microsoft has released an update for Windows 10 version 2004, 20H2 and 21H1 as of August 24, 2021. This update should correct the error 0x800F0984 (PSFX_E_MATCHING_BINARY_MISSING), which prevents the installation of updates under Windows 10. After all, the error has been dragging itself through various Windows 10 versions (from version 2004) sinceMay 2021. Here are some notes about this optional update, which is not offered via Windows Update.
[German]After the Razer case, the next clunker has now come to light. After it became known that standard users can become administrators with Razer mice via the driver installation, a security researcher took a closer look at the SteelSeries device software. SteelSeries' software also allows any standard user to gain administrative privileges under Windows with just a few mouse clicks. Here some information about this new security case.
[German]On August 20, 2021, Microsoft published recommendations on the subject of virus protection for on-premises Microsoft Exchange Servers. Recommendations are also given there regarding the exclusion of certain folders from virus scanning. On the other hand, we are experiencing waves of attacks on Exchange Servers via vulnerabilities such as ProxyShell and ProxyLogon. The attackers then deposit a WebShell on the infected Exchange systems. Therefore, it is reasonable to ask whether Microsoft's recommendations are good advice.
[English]On August 24, 2021, the Mozilla developers have already released version 91.0.2 as a maintenance update of the Firefox browser. According to the release notes, there are only two bug fixes. High contrast mode is no longer enabled by default when "Increase contrast" is enabled in macOS preferences. Firefox no longer deletes authentication credentials when trackers are deleted to avoid repeatedly asking for a password. The new Firefox can be updated via update in the browser or downloaded from this website for various platforms (the variant is to be selected via the displayed list boxes). (via)
MVP:
2013 – 2016
WIMVP:
2017 – 2020
