[German]Several vulnerabilities have been discovered in a driver that has been installed on millions of Dell consumer and enterprise Windows systems over the past 12 years. These vulnerabilities allow an attacker to perform privilege escalation. In other words, the vulnerability (CVE-2021-21551) in Dell's so-called DBUtil Windows driver now puts the affected PCs, All-in-One and 2-in-1 systems at security risk.
[German]On May 4, 2021 (first Tuesday of the month, Office Patchday) Microsoft releases non-security updates for still supported versions of Microsoft Office. Here's a quick rundown – there were only updates for Office 2016 this time, but it seems Outlook is having issues with autocomplete.
[German]The Credit Scores of Millions of Americans has been exposed via a faulty API of credit reporting company Experian, as Krebs on Security reported here. A name and an email address was sufficient, to snoop into the credit score of tens of millions of Americans. Although Experian says it has plugged the data leak, the security expert who has uncovered this leak, fears, that other lending websites, who are using this API are still suffering from thes vulnerability.
[German]Even though Adobe Flash has been disabled in Windows 8.1 and Windows 10 since early January 2021, there may still be code in operating system installations. Now Microsoft has quietly updated its plans to remove Flash from Windows. Starting in June 2021, a new attempt will be made to remove the Adobe Flash player from Windows.
[German]Microsoft security researchers have taken a closer look at Internet of Things (IoT) software used in devices and operational technology (OT) industrial systems. In the process, they have come across more than two dozen critical remote code execution vulnerabilities. The implications affect everything from IoT devices to medical devices to industrial systems.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Short summary of various topics for Windows 10. For example, Microsoft is working on integrating the Bluetooth AAC audio codec into Windows 10. In addition, a problem was solved that programs were arranged differently after waking up from standby mode. And over at Scott Hanselmann's site, I came across a tip on how to solve the problem of not running just one or all monitors in full-screen mode during RDP sessions.
[German]Swiss cloud provider, Swiss Cloud AG, fell victim to a cyber attack at the end of April 2021 – according to my information, it was a ransomware attack that brought the company to its knees. Here is a rough overview of what is known and confirmed by Swiss Cloud AG.
[German]Microsoft released a new Microsoft Graph APIs as a public preview the days. The new API is intended to enable developers and IT professionals to manage Windows 10 updates and accelerate Windows 10 security updates in enterprise environments.
[German]Users repeatedly ask how updates can be blocked for installation under Windows 10 (Home and Pro). After all, Microsoft has removed this functionality from Windows 10. If there are problems, the updates install themselves again and again, until the problem is gotten, the update has been withdrawn by Microsoft or blocked by the user. With the Windows Update Manager by David Xanatos, however, there is a tool to specifically hide updates under Windows 10.
[German]Microsoft has released the Security Baseline for Microsoft365 Apps for Enterprise v2104 as a final for enterprise deployment. This baseline builds on the previous Office baseline, which was released in mid-2019.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
