Bye, bye AudaCity after new privacy agreement

Posted on 2021-07-06 by guenni

[German]The Audacity saga continues – as of July 2, 2021, there was another change to the audio application's privacy agreement. There, the new owner's management is keeping some back doors open to be able to collect telemetry data from the application and possibly from the use of this program. After the back and forth of the new management on telemetry and user data collection over the last two months, the community is pretty pissed. It seems it's time to say goodbye to the application. Here's a brief overview of the state of affairs.

Continue reading

Posted in Software | Tagged , | Leave a comment

Kaseya hack affects 1,500 companies worldwide

Posted on 2021-07-06 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]The supply chain attack on Kaseya VSA affects approximately 1,500 companies worldwide, according to the manufacturer. This is according to a status update dated July 5, 2021. Meanwhile, the REvil group is demanding around $70 million in ransom to release the master key to decrypt the systems. Here is an overview of the latest developments.

Continue reading

Posted in Security | Tagged | Leave a comment

Cyber Polygon July 9, 2021

Posted on 2021-07-06 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Cyber Polygon  is an annual cybersecurity event dedicated to cybersecurity topics. Taking place on July 9, 2021, Cyber Polygon this time is about simulating a cyber attack on the digital data streams that have skyrocketed during the coronavirus pandemic. In the course of a fictional cyber attack, participants from numerous countries are asked to respond in real time "to a targeted attack on a company's supply chain."

Continue reading

Posted in Security | Tagged | Leave a comment

Azure Virtual Desktop: A bug blocks WSUS update downloads (June 2021)

Posted on 2021-07-06 by guenni

[German]Microsoft is investigating an issue that is preventing the download of security updates via Windows Server Update Services (WSUS) for Azure Virtual Desktops. Virtual Desktop instances are stuck at the May 2021 update level.

Continue reading

Posted in Cloud, Security, Update, Windows | Tagged , , , | Leave a comment

Windows 10, the WSUS and the SSU+LCU detection chaos

Posted on 2021-07-04 by guenni

Windows[German] I already talked about problems in connection with the June 2021 update for Windows 10 within some blog posts. If updates required as a prerequisite are missing, the installation will causes issues. But a blog reader emailed me to point out that there has been a serious issues in Windows 10 and its server counterparts for months in the detection of the combined SSU and LCU packages available in WSUS. I am therefore posting the information in this blog post for information and discussion.

Continue reading

Posted in Update, Windows | Tagged , , , | 2 Comments

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Coop-Sweden closes 800 stores after Kaseya VSA supply chain attack by REvil gang

Posted on 2021-07-03 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Co-operative Swedish supermarket chain Coop was forced to close its 800 affiliated stores Friday evening and Saturday after a ransomware attack on a service provider responsible for billing and point-of-sale systems. The whole thing is directly related to the supply chain attack on RRM Kaseya VSA and the follow-up cyber attack on at least eight major US managed service providers (MSPs).

Continue reading

Posted in Security | Tagged , | Leave a comment

REvil Ransomware attack at 200 Companies via Kaseya VSA and Management Service Provider (MSP)

Posted on 2021-07-03 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]It is once again a nightmare come true for the IT landscape. The REvil ransomware group has succeeded in an attack via management service providers (MSPs). As a result, the servers of 200 companies were encrypted by the ransomware. It looks like the Kaseya IT management platform has been compromised. The whole thing is something like the SolarWinds supply chain attack, only this time it was ransomware.

Continue reading

Posted in Security | Tagged , | Leave a comment

0Patch Micropatches for PrintNightmare Vulnerability (CVE-2021-34527)

Posted on 2021-07-03 by guenni

Windows[German]There is a remote execution vulnerability in the Windows Printer Spooler service that primarily threatens Windows Server systems and is already being actively exploited. So far, Microsoft has only confirmed the vulnerability and provided information on how to mitigate the problem by disabling the Windows Printer Spooler service until a security update is available. Now ACROS Security has presented a free 0Patch solution for various Windows Server versions that prevents exploitation of the vulnerability.

Continue reading

Posted in Security, Windows | Tagged , , | 2 Comments

Windows Print Spooler Vulnerability (CVE-2021-1675, PrintNightmare) Confirmed by MS; CISA Warns

Posted on 2021-07-02 by guenni

Windows[German]A brief  update on the RCE vulnerability CVE-2021-1675 in the Windows Print Spooler known as PrintNightmare. US-CISA warns and recommends disabling the Print Spooler service on servers that are not used for printing. And as of July 1, 2021, Microsoft has confirmed that the RCE vulnerability known as PrintNightmare, CVE-2021-1675, is still unpatched and is even currently being exploited.

Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

Be careful with BitLocker management in ConfigMgr

Posted on 2021-07-02 by guenni

Windows[German]Does anyone manage their Windows clients via Configuration Manager (ConfigMgr) and also use Bitlocker? There is a PowerShell script Invoke-MbamClientDeployment.ps1 to supposedly upload the keys. However, Microsoft writes that this PowerShell script is not supported for use with BitLocker Management in Configuration Manager – so it must not be used in this scenario under any circumstances.

Continue reading

Posted in Software, Windows | Tagged , , | Leave a comment