[German]Security researchers recently disclosed a new attack vector called PetitPotam. By means of an NTLM relay attack, any Windows domain controller can be taken over. In the meantime, Microsoft has responded and published a security advisory about this security issue. But there is a second proposal from security researchers to block the attack via RPC filters. But this proposal is not a universal solution.
[German]Owners of older Android devices with Android versions up to 2.3.7 will soon have to say goodbye. From September 27, 2021, Google will refuse to allow these devices to sign-in to their Google accounts. This has been announced last week and has also been notified via mails sent to the device owners.
[German]On July 15, 2021, in the blog post Windows 365: The cloud PC presented at Inspire, I had reported on the new Windows 365, which was unveiled at the Microsoft Inspire conference. A month after that announcement, the Windows 365 product is now available. Addendum: Due to high demand, Microsoft had suspende the delivery of the free trial versions.
[German]Foreign companies operating in China need the Beijing One Pass app, to access a digital platform for managing government employee benefits. Now security specialists have found spyware-like features in this app and made that known.
[German]Routers and modems from the Taiwan-based manufacturer Arcadyan have a CVE-2021-20090 vulnerability that can be used to bypass authentication. The routers and modems are sold under many trade names by other manufacturers.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]For users who want to easily backup and restore their Edge browser profile data, I have a solution. A PowerShell module that can perform this exact task for the current user.
[German]New information on SolarWinds supply chain attack on Orion software. Tens of thousands of companies and organizations around the world were compromised via the attack, which was suspected to be attributed to Russian state-related hackers. The U.S. Department of Justice (DOJ) has now announced that 27 U.S. government agencies were also affected by the SolarWinds hack.
[German]Microsoft provides different types of updates for Windows (10 and 11). These range from the monthly security and quality updates on patchday to preview updates and out-of-band updates. This is all known to well-informed administrators and users. But Microsoft has probably seen the need to write that down again (and also for Windows 11) in more detail.
[German]Once again, a general question that came to me via a blog reader. It's about servers in a domain environment no longer showing up completely in Explorer in the Network Neighborhood on Windows 10 clients (20H2 and 21H1). The reader has a strange error pattern depending on which environment is used.
[German]Microsoft has also updated the Edge browser to version 92.0.902.62 as of July 29, 2021. The release notes on the beta channel state that various bugs and performance issues have been fixed. German blog reader Uli writes that this update fixes the issues described in the blog post Microsoft Edge 92.0.902.55: Fixes vulnerabilities, causes freezes in PDFs.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
