ProxyShell, ProxyLogon and Microsoft's contradictious Exchange doc for virus scan exceptions

Posted on 2021-08-25 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]On August 20, 2021, Microsoft published recommendations on the subject of virus protection for on-premises Microsoft Exchange Servers. Recommendations are also given there regarding the exclusion of certain folders from virus scanning. On the other hand, we are experiencing waves of attacks on Exchange Servers via vulnerabilities such as ProxyShell and ProxyLogon. The attackers then deposit a WebShell on the infected Exchange systems. Therefore, it is reasonable to ask whether Microsoft's recommendations are good advice.

Continue reading

Posted in Security, Software | Tagged , , | Leave a comment

Firefox 91.0.2

Posted on 2021-08-25 by guenni

Mozilla[English]On August 24, 2021, the Mozilla developers have already released version 91.0.2 as a maintenance update of the Firefox browser. According to the release notes, there are only two bug fixes. High contrast mode is no longer enabled by default when "Increase contrast" is enabled in macOS preferences. Firefox no longer deletes authentication credentials when trackers are deleted to avoid repeatedly asking for a password. The new Firefox can be updated via update in the browser or downloaded from this website for various platforms (the variant is to be selected via the displayed list boxes). (via)

Posted in browser, Software, Update | Tagged | Leave a comment

Samsung can remotely disable its TVs with TV Block

Posted on 2021-08-25 by guenni

[German]Insiders know that software often has a so-called killswitch that shuts it down remotely. With Microsoft and other manufacturers, the activation can be reset and the user is left in the dark. Or a security feature like Secure Boot could be used for such purposes. Samsung also offers the possibility to remotely turn off TVs worldwide. The feature is called TV Block, and it recently came to light.

Continue reading

Posted in devices | Tagged | 2 Comments

(eMail-) Encryption with StartTLS as a security risk

Posted on 2021-08-24 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]The encryption method StartTLS, which can be used in network communication, especially for e-mails, has a number of vulnerabilities that make it possible to break open communication by stealing access data, for example. This was already proven by German security researchers at the beginning of August 2021.

Continue reading

Posted in Security | Tagged , | Leave a comment

38 million records exposed by Microsoft Power Apps

Posted on 2021-08-24 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]I've been waiting for something like this to happen for a while now. Misconfigured Microsoft Power Apps exposed 38 million records of sensitive data. Forty-seven government agencies and companies are affected, as security researchers at UpGuard discovered in May 2021 and have now disclosed. 

Continue reading

Posted in Security | Tagged , , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Outlook Add-On for Microsoft Edge

Posted on 2021-08-24 by guenni

Edge[German]Microsoft has an extension (add-on) for the Edge browser that allows access to various Outlook services (hotmail.com or outlook.com) such as Mail, Calendar, Teams, etc. directly in the browser.

Continue reading

Posted in browser, Software | Tagged , , | Leave a comment

Thunderbird 91.0.2

Posted on 2021-08-23 by guenni

[German]The developers of the Thunderbird email client have recently released version 91 (only available as a download and not as an update). Now, a maintenance and security update to version 91.0.1 has been released on August 17, 2021, and version 91.0.2 on August 23, 2021.

Continue reading

Posted in Software, Update | Tagged | Leave a comment

Azure AD Connect 2.0.10.0 released as Hotfix

Posted on 2021-08-23 by guenni

[German]Brief note to administrators who are also responsible for Microsoft Azure. Microsoft has released Azure AD Connect 2.0.10.0. This is intended as a hotfix to work around issues that occur when renaming a domain.

Continue reading

Posted in Cloud, Software | Tagged , , | Leave a comment

Windows 10: Administrator privileges obtained via Razer mouse via LPE vulnerability

Posted on 2021-08-23 by guenni

Windows[German]Connecting a Razer mouse is enough to gain administrative privileges as a standard user. The background is that the driver installation is executed with SYSTEM rights and the user can then open an administrative prompt. He already has administrative access to the system. Razer did not respond to a request from the discoverer of the vulnerability.

Continue reading

Posted in Security, Windows | Tagged , , | Leave a comment

Wave of attacks, almost 2,000 Exchange servers hacked via ProxyShell

Posted on 2021-08-22 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]I have been waiting for this for a long time, but now the feared has happened. Since Friday, there has been a massive wave of attacks on unpatched Microsoft Exchange servers via the ProxyShell vulnerability. Huntres has already discovered over 1,900 hacked Exchange servers but which had a shell installed. Meanwhile, CERT-Bund also warns. Here is some information about the state of attack wave.

Continue reading

Posted in computer, Security, Software, Update | Tagged , , , | Leave a comment