PoC for Microsoft Exchange bug discovered by NSA public

Posted on 2021-05-07 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Various security vulnerabilities in Microsoft Exchange were discovered by the US intelligence agency NSA and reported to Microsoft. Microsoft closed these vulnerabilities in April 2020 with corresponding updates. As a "reminder for the weekend", we would like to point out that a proof of concept (PoC) has been published for these vulnerabilities. So anyone who is not up to date with the latest patch status should take advantage of the weekend.

Continue reading

Posted in Security | Tagged , | Leave a comment

Windows 10X will not come in 2021 …

Posted on 2021-05-07 by guenni

Windows[German]A brief news before we head into the weekend: Microsoft will no longer launch its slimmed-down Windows 10X (and ChromeOS competitor) in 2021, which I had actually expected for the spring release. Instead, they want to focus on the revision of Windows 10 as part of the Sunvalley project. There are even speculations that the plug has just been pulled completely. Here are the latest rumors surrounding this issue.

Continue reading

Posted in Windows | Tagged | Leave a comment

0patch fixes Windows Installer LPE-Bug (CVE-2021-26415)

Posted on 2021-05-07 by guenni

[German]ACROS Security has released a micropatch for the CVE-2021-26415 vulnerability in Windows Installer. This vulnerability was patched by Microsoft in April 2021 via a security update. The 0patch solution is for people who do not have an ESU license.

Continue reading

Posted in Security, Windows | Tagged , , | Leave a comment

Microsoft: Data of European companies/authorities remain in Europe

Posted on 2021-05-07 by guenni

[German]Microsoft is responding to the fact that there is no legal basis for data exchange between European customers and the US. Therefore, Microsoft plans to adapt its products so that in the future, at some point, the data of European companies and government agencies will only be hosted on servers that are located in the EU.

Continue reading

Posted in Security | Tagged , , | Leave a comment

Firefox 88.0.1 and 78.10.1 ESR

Posted on 2021-05-06 by guenni

Mozilla[German]Mozilla's developers have released versions 88.0.1 and 78.10.1 of the Firefox browser on 5.Mail 2021. It is a security update, which should eliminate vulnerabilities, but also fixes bugs.

Continue reading

Posted in browser, Security, Update | Tagged , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Thunderbird 78.10.1

Posted on 2021-05-06 by guenni

[German]The developers of the Thunderbird email client have released Thunderbird 78.10.1 on May 4, 2021. It is a maintenance update for the 78 main version of the email client, which fixes various bugs and vulnerabilities.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Will Samsung users soon face Microsoft account lockout and loose access to content?

Posted on 2021-05-06 by guenni

[German]Brief information, after a blog reader send me a question/hint. Samsung has teamed up with Microsoft and will soon host the Samsung Cloud at OneDrive. That raises concerns that Samsung Cloud users may facing similar issues like OneDrive users: Microsoft could lock an OneDrive account without notification, claiming violation of terms of use. Here's some information sorted out about that. 

Continue reading

Posted in Cloud, issue | Tagged , , | 3 Comments

Microsoft Defender floods Windows system drive with files (May 2021)

Posted on 2021-05-05 by guenni

Windows[German]Quick question to see if any of you are affected. Microsoft Defender, which is included by default in Windows, seems to have been running amok for a few hours now, creating and leaving thousands of files on Windows servers (and possibly Windows 10 clients). A user reached out to me on Twitter last night regarding this and left some initial clues. Here's a brief overview.

Continue reading

Posted in Security, Windows | Tagged , , | Leave a comment

Windows driver with vulnerabilities (CVE-2021-21551) puts millions of Dell systems at risk

Posted on 2021-05-05 by guenni

Windows[German]Several vulnerabilities have been discovered in a driver that has been installed on millions of Dell consumer and enterprise Windows systems over the past 12 years. These vulnerabilities allow an attacker to perform privilege escalation. In other words, the vulnerability (CVE-2021-21551) in Dell's so-called DBUtil Windows driver now puts the affected PCs, All-in-One and 2-in-1 systems at security risk.

Continue reading

Posted in Security, Windows | Tagged , , | Leave a comment

Microsoft Office Patchday (May 4, 2021)

Posted on 2021-05-05 by guenni

[German]On May 4, 2021 (first Tuesday of the month, Office Patchday) Microsoft releases non-security updates for still supported versions of Microsoft Office. Here's a quick rundown – there were only updates for Office 2016 this time, but it seems Outlook is having issues with autocomplete.

Continue reading

Posted in Office, Update | Tagged , , , | 1 Comment