[German]ACROS Security has released an update for its 0patch agent. The purpose of this update to version 21.05.05.10500 is to fix several bugs as well as performance issues that the previous 0patch agent can cause under Windows. The bugs and problems were reported by users or found internally by the development team.
[German]Today another blog post from the category "Windows 10, the mysterious update experience". A blog reader recently drew my attention to a new "upgrade experience" (that's what Microsoft calls it). The Experience is described quite quickly: The unsuspecting user receives a prompt to install a feature update and then ends up with an unbootable system because no boot media was found. At the same time, the "system-reserved" partition was suddenly given a drive letter. Maybe a single case.
[German]A little news to end the week, which would not have occurred to me if Microsoft had not made it public. On 9 Jul9 2021, Microsoft proudly announced that its Windows Release Health status page is now available in 10 languages. On the status page in question, Microsoft provides information about known issues with Windows 10 versions, as well as issues that have been fixed.
[German]Interesting aspect I stumbled upon recently. It's about the question of how Internet of Things (IoT) devices threaten IT security. Because in addition to often serious vulnerabilities in their firmware as well as lack of updates after a short time, there is another problem area. Many devices have built-in WLAN or Bluetooth chips without users being made aware of this when they are sold. The next security issue is emerging.
[German]The team of maintainers of Linux Mint have just announced the availability of Mint 20.2. Linux Mint 20.2 (Uma) is a Long-Term Support release that will be supported until 2025. It comes with updated software and brings refinements and many new features to make your desktop experience more convenient..
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]At the beginning of July 2021, there was a supply chain attack on Kaseya VSA, a remote management and monitoring (RMM) software, so malware was delivered. As a result, the REvil Ransomware group's encryption Trojan struck, encrypting the IT systems of approximately 1,500 companies worldwide. Gradually, more details are becoming known. For example, the vulnerability exploited for the attack was reported to Kaseya in April 2021 – and a vulnerability known since 2015 is still open in their management software.
[German]Microsoft has commented on reports that the unscheduled updates to close the PrintNightmare vulnerability CVE-2021-34527 in the Windows Print Spooler service would not eliminate all risks. The message is that if the special updates are installed and Windows is configured and operated properly, there is no known scenario that would allow exploitation of the vulnerabilities. As a follow-up, here is an overview of this issue.
[German]After installing updates (e.g. KB5004945, KB5003690, KB5004760), some decicated to close the vulnerabilities in the print spooler service, systems with label printers from Zebra and Dymo experienced printing issues – printing is no longer possible. Until now, the only option was to uninstall the relevant update or try to print directly via USB. Based on the feedback, however, Microsoft has now responded and provided a fix to correct this problem caused by several updates via the KIR function available in Windows 10 from version 2004 and later.
[German]In today's blog post, I'll summarize two things that German blog reader Markus K. pointed out to me by mail. Possibly there are changes in driver updates via WSUS, at least there are and ambiguities. Once he suddenly appears on Dell systems password prompts to clients when a firmware is to be installed. But there are other oddities, such as missing reloading of drivers after an activation. And then there is the suspicion that Windows 10 gets the updates directly past WSUS, from the Microsoft update servers, no matter what the administrator has set in group policies.
[German]Microsoft has released out-of-band security updates for the PrintNightmare vulnerability (CVE-2021-1675) in the Windows Print Spooler service. But these updates seem to end in chaos – it reminds me on the Printer-Gate in March 2021, where Microsoft had to release a series of update fixes to close a printer vulnerability but still allow printing. I'll summarize a few points outside of Microsoft's documentation in this blog post. These range from the fact that the updates don't close the vulnerabilities, to installation issues and problems with Zebra label printers subsequently refusing to print.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
