NSA list of the Top 25 Cyber Threats

Posted on 2020-11-02 by guenni

[German]Cyber criminals are successfully attacking businesses, administration and organizations and successfully exploiting vulnerabilities for these actions. The American intelligence service NSA has published a list of the most frequently used attack vectors, exploits and malware by Chinese hacker groups. It might be interesting to take a look at this list, which I received through Check Point, the provider of cyber security solutions.

Continue reading

Posted in Security | Tagged | Leave a comment

Addendum: Microsoft Security Advisories October 2020

Posted on 2020-11-01 by guenni

[German]Small addendum from October 2020: Microsoft had published some security advices for security updates. They have been left here, I will post them here for security reasons.

Continue reading

Posted in Security | Tagged | Leave a comment

Microsoft confirms certificate loss on Windows 10 upgrades

Posted on 2020-11-01 by guenni

[German]Microsoft has now officially confirmed the certificate problem, which I already mentioned here in the blog, as of October 30, 2020 and has given details of when certificates will be lost during a Windows 10 function update.

Continue reading

Posted in issue, Windows | Tagged , | 4 Comments

Emotet malware comes as a supposed Word update

Posted on 2020-11-01 by guenni

[German]A brief warning: The criminals behind the emotet malware are now distributing this malware via a mail attachment that appears as a supposed Word update. Microsoft warns about that.

Continue reading

Posted in Security | Tagged | Leave a comment

Windows Kernel 0-day vulnerability used in the wild

Posted on 2020-10-31 by guenni

[German]Cybercriminals use an exploit chain to attack a patched 0-day vulnerability in the chrome browser (Edge) and an unpatched 0-day vulnerability in the Windows kernel. The vulnerability has just been disclosed by Google Project Zero.

Continue reading

Posted in browser, Security, Windows | Tagged , | Leave a comment

WordPress 5.5.2, and 5.5.3 as bux fix released

Posted on 2020-10-31 by guenni

The developers have released WordPress 5.5.2 as a security and maintenance update on October 29, 2020. In this version 14 bugs are fixed, which are described in the release notes. The update fixes a critical vulnerability that allows a remote attacker to take over a page via a denial of service attack (see also). So you should update as soon as possible – here the blogs were updated immediately after release. Addenum: On October 30, 2020 WordPress 5.5.3 has been released as a bug fix update.

Posted in Security, Software, Update | Tagged , | Leave a comment

Microsoft Edge available as update KB4584642 for WSUS

Posted on 2020-10-31 by guenni

Edge[German]Short note for for administrators in enterprise environments who want to use the new Chromium-Edge Browser. Microsoft made Microsoft Edge now available as update KB4584642 for WSUS. Here are a few details.

Continue reading

Posted in browser, Software, Update, Windows | Tagged , , , | Leave a comment

Windows 10 20H2: lsass.exe crashes (Oct. 2020)

Posted on 2020-10-31 by guenni

[German]In Windows 10 20H2 some users may experiencethat the Local Security Authority Subsystem Service file (lsass.exe) crashes in certain constellations. Here is a short overview of what I have seen so far – combined with the question if there are other people affected. Addendum: Root cause known, link to a follow up article added.

Continue reading

Posted in issue, Windows | Tagged , | 8 Comments

PowerToys 0.25.0 released

Posted on 2020-10-30 by guenni

[English]Microsoft released version 0.25.0 of PowerToys for Windows 10 users on October 10, 2020. These tools are free and offer additional features for Windows 10. The new version is intended to increase the stability of the tools. The new features and fixes of PowerToys 0.25.0 are documented on GitHub.

Posted in Software, Windows | Tagged , | Leave a comment

Windows 10 Insider Preview Build 19042.610 (20H2) released

Posted on 2020-10-30 by guenni

Microsoft has also released the Windows 10 Insider Preview Build 19042.610 (20H2) for Windows Insider in Beta and Release Preview Channels as of October 29, 2020. This build is shipped as Update KB4580364, as you can read within announcement made in the Windows-Blog. Microsoft fixed an issue that causes the Docker pull operation to fail. This issue occurs because of a Code Integrity (CI) Policy that blocks the import of a Windows container image.

Posted in Windows | Tagged , | Leave a comment