[German]The http-sys vulnerability (CVE-2021-31166), which was already patched in May 2021, is more serious than initially assumed. Windows 10/Windows Server systems running the Windows Remote Management Service (WinRM) are also threatened. Administrators should ensure that affected systems are patched, as the http-sys vulnerability allows worm-like spread of malware.
Apple has released updates to its iOS 14.6 and macOS 11.4 operating systems as of May 24, 2021. iOS 14.6 is available for iPhone 6s and newer, iPad Pro (all models), iPad Air 2 and newer, iPad 5th generation and newer, iPad mini 4 and newer, and iPod touch (7th generation). A list of the closed vulnerabilities can be found here. Apple has published a description of the security fixes for macOS 11.4 here. Bleeping Computer has published some information about the (already exploited) macOS vulnerability here, which has now been patched.
[English]Bose, a manufacturer of audio products, has fallen victim to a ransomware attack. In the process, some of the company's employees' data was also siphoned off, the company has admitted. The malware attack was discovered on March 7, 2021, and on March 29 it was found that data from the human resources department was siphoned off. A few details can be read at Bleeping Computer.
[German]Users of Microsoft's cloud storage OneDrive occasionally run into login issues. The login is rejected with the error 0x8004de40 when logging in. Microsoft addressed the issue the other day and suggests a workaround for these cases.
[German]In 2011, a hack of the security provider shook up the security scene. This was because Chinese hackers had managed to have the RSA servers and the seed keys to generate SecurIDs for two-factor authentication (2FA). After 10 years, the non-disclosure agreement (NDA) to which parties were subject has now expired. Used Andy Greenberg to publish a post from the information he received.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Just a short note – the blogs here – especially my German language IT blog has been nominated for the European Cybersecurity Blogger Awards 2021. I have now been informed that I have reached the finals – whether there will be an award, I don't know – I feel honored, but I'm also relaxed about it – we will wait and see.
[German]In enterprise environments, WSUS is frequently used under Windows Server for update management. But how do administrators use WSUS and what do they manage with it? I have the results of a survey from the end of 2020, which I have intended to present here on the blog for a long time.
[German]Update KB5003169 dated May 11, 2021 for Windows 10 version 1909 probably causes collateral damage. After installation, logging into Microsoft 365 desktop client apps such as Microsoft Teams, OneDrive for Business, and Microsoft Outlook may fail. You may see error message 80080300 or "We ran into a problem. Reconnecting…" when authenticating or logging into Teams. In the KB article for the update, Microsoft recommends restarting or using the web apps for the Office module in question. (via)
[German]As of May 20, 2021 (3rd week of the month, C-Week), Microsoft has released several optional cumulative (preview) updates for Windows 10 version 1809 and 1909, as well as their Windows Server counterparts. Here's an overview of the updates in question.
[German]Since yesterday, May 20, 2021, users of the Chrome browser on Windows 10 have been suffering from sudden crashes worldwide. The funny thing is that Google released Chrome 90.0.4430.212 back on May 10. Until yesterday, there were no major reported issues with this version of the browser. But now something has happened to the browser, causing crashes to pile up. Update: Google has released a fix.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
