Microsoft touts top-notch monthly Windows update efficiency

Posted on 2021-08-09 by guenni

Windows[German]The timely installation of security updates is a building block to protect Windows systems from the cyber threats of this time. Microsoft therefore once again advertises to its clientele that it implements or achieves a "first-class monthly Windows patch efficiency". Here, in principle, one would nod immediately if it weren't for the teeny-tiny flaw of often unreliable updates, which, unfortunately, are recurrently notable for significant collateral damage. Here's a blog post that tries to illuminate the two different worlds between Microsoft's own view and the user community's experience.

Continue reading

Posted in Security, Update, Windows | Tagged , , | 1 Comment

Exchange vulnerabilities: Will we see Hafnium II?

Posted on 2021-08-08 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Are we soon seeing a second hafnium disaster, in which Exchange servers are attacked and taken over via vulnerabilities? At the BlackHat 2021 conference, security researcher Orange Tsai spoke about new vulnerabilities in Microsoft Exchange and, in addition to old (and patched) security issues, and he lso hinted at new attack vector via known and new vulnerabilities. What has been patched so far is only the tip of an iceberg, he hinted. In addition, there are plenty of Exchange servers that are accessible via the Internet but are at a March 2021 patch level. Ingredients that could potentially bring us the next disaster with cyber attacks on Exchange servers.

Continue reading

Posted in Security, Software, Update, Windows | Tagged , , | Leave a comment

Microsoft's plans to refresh OneNote

Posted on 2021-08-08 by guenni

[German]Microsoft has announced this week plans how to refresh its OneNote software.  There is, after all, an app for Windows 10 and there is still the classic OneNote 2016 application for the desktop, which was installed with Microsoft Office. Over the next 12 months, a series of updates are expected to bring improvements.

Continue reading

Posted in Office | Tagged | Leave a comment

The Windows RunOnce registry key

Posted on 2021-08-08 by guenni

Windows[German]Most Windows insiders have come across the RunOnce key in the registry. Programs and services can enter a command there, which is executed once at the next Windows start and then deleted. However, Windows supports various options to force the key to be evaluated in safe mode or to prevent the entry from being deleted if the command isn't executed.

Continue reading

Posted in Windows | Tagged | Leave a comment

Mainboard manufacturer GIGABYTE victim of RansomEXX ransomware

Posted on 2021-08-07 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Taiwan-based motherboard manufacturer GIGABYTE has fallen victim to a ransomware attack by the RansomEXX group. The RansomEXX gang is now threatening to make captured files in the amount of 112 GBytes public unless a ransom is paid.

Continue reading

Posted in Security | Tagged | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

0patch fix for Windows PetitPotam 0-day vulnerability (Aug. 6, 2021)

Posted on 2021-08-07 by guenni

Windows[German]Security researchers recently disclosed a new attack vector called PetitPotam. Using an NTLM relay attack, any Windows domain controller can be taken over by attackers. Now, ACROS Security has presented a free 0Patch solution for various Windows Server versions that prevents exploitation of the vulnerability.

Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

Amazon Kindle: Vulnerability allowed Amazon account takeover

Posted on 2021-08-07 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Security researchers from Check Point have found a dangerous vulnerability in the eBook reader Amazon Kindle. Attackers could have used malicious code to take over the linked Amazon account of the device owner or read out his data. In the meantime, Amazon has closed this vulnerability with an update.

Continue reading

Posted in devices, Security | Tagged , | Leave a comment

Edge 92.0.902.67

Posted on 2021-08-06 by guenni

Edge[German]Microsoft has updated the Edge browser to version 92.0.902.67 as of August 5, 2021. The release notes state that security updates to the Chromium browser have been included. Microsoft emailed me the list of fixed vulnerabilities in Chromium.

Continue reading

Posted in browser, Security, Update | Tagged , , | Leave a comment

0patch fix for new Windows PrintNightmare 0-day vulnerability (Aug. 5, 2021)

Posted on 2021-08-06 by guenni

Windows[German]In the blog post PrintNightmare: Point-and-Print allows installation of arbitrary files I had reported about a new vulnerability in Windows. A remote print server, which can be reached by unauthorized persons, allows to install arbitrary malicious files on the clients via point-and-print. In the article I had also mentioned ways to mitigate it. Now ACROS Security has presented a free 0Patch solution for various Windows Server versions that prevents exploitation of the vulnerability.

Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

ConfigMgr: Deprecated features in 2022

Posted on 2021-08-06 by guenni

Windows[German]Brief information for administrators in enterprise environments who manage Windows Updates via Configuration Manager (ConfigMgr). On January 31, 2022, the first features will be deprecated. For example, Desktop Analytics for Windows 7, Windows 8.x and older Windows 10 versions will no longer be supported. Later in 2022, more features will be dropped Here's some information on what to look out for.

Continue reading

Posted in Update, Windows | Tagged , | Leave a comment