Docker container security means that users must set the correct environment variables on the management host so that image signatures can be verified by Docker commands. Trend Micro describes how to verify container images in this article.
A small note to adminswho manage their updates via WSUS in Enterprise environments. Colleague Susan Bradley makes a small survey about the satisfaction with the WSUS. Maybe one or the other administrator will participate. Susan will publish the results in a few days.
[German]Nvidia recently had to release a security update for an application for its GeForce Experience driver package. The update fixed a security hole that was classified as critical.
[English]Small addendum: Oracles developers have already released Virtualbox version 6.1.16 on October 16, 2020. It is a maintenance update which should fix bugs of earlier versions.
Long time ago – 20 years ago my book 'Microsoft Windows Script Host 2.0 Developer's Guide' was published by Microsoft Press in the USA. Somebody told me on Twitter that someone in Hungary is hosting (illegally) the online version of the book on the web. Most of the content is 'not true anymore' (security updates of IE made the use of many methods impossible), and part 2 was never published by MS Press USA (the material was only available in German at Microsoft Press Germany). For forensic/archaeological research, here's the link. BTW: The world was still okay back at this time, no ransomware, no cloud, and we didn't know about Windows 10 either. Today the PowerShell is the tool of choice for admins.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Premiere in the field of cyber-crime? A group of hackers donates a tiny portion of the money they get from hacks to charity, which puzzles the experts. Here is some information about it.
[German]The network equipment supplier Cisco has published a security warning and security updates for various network products to eliminate vulnerabilities.
[German]Some users facing trouble when they try to use the Windows 10 feature to reset the system. Microsoft has now confirmed an issue preventing a reset and published a workaround to fix this issue.
[German]Microsoft has relased the cumulative update KB4589464 to Windows Insider in the Dev Channel as of Oct. 23, 2020. This update raises Windows 10 20H2 to build 20241.1005. Microsoft released build 20241 on October 21, 2020 (see Windows 10 Insider Preview Build 20241 released).
[German]The French IT company Sopra Steria, to which, for example, large parts of the IT of the National Health System (NHS) in Great Britain have been transferred, has fallen victim to a Ryuk ransomware attack. If the information I have is correct, an Active Directory domain controller was taken over via the Zerologon vulnerability, allowing the ransomware to spread on the service provider's IT network.
-
MVP:
2013 – 2016
WIMVP:
2017 – 2020
