[German]Cisco has released critical security updates for its IOS and IOS XE network operating systems. The updates close a total of 24 critical vulnerabilities in the products. It should therefore be patched promptly.
[German]Security update KB4577015, released September 8, 2020, causes a wsecedit.dll error in GPO-MMC on Windows Server 2016, rendering the Group Policy Editor unusable. But there is a temporary workaround to prevent the crash and Microsoft has admitted the bug in the meantime.
[German]The source code for Windows XP SP1 and other versions of the Microsoft operating system was leaked a few hours ago as a torrent. The source code should be a treasure trove for people looking for vulnerabilities in Windows.
[German]Lenovo will increasingly rely on Linux in the future. While various workstation systems with Linux pre-installed were already available in the past, Lenovo is now expanding the program. In the future 20 Thinkpad and ThinkStation models will available with a preinstalled Ubuntu LTS Linux.
[German]Today a note to the administrators among my blog readers who use Windows Server Update Services (WSUS) to manage client updates. Microsoft demands that clients will soon have to communicate with WSUS via https – the September 2020 updates have laid the foundation for this.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Security researchers at Check Point have succeeded in attacking the Instagram app on smartphones by successfully posting malware-infected images. This allowed the theft of account credentials and mobile device monitoring. The vulnerability has now been fixed.
[German]I bring up the Zerologon vulnerability issue again. Microsoft warns that attackers actively use the Windows Server Zerologon exploits for attacks. Windows Server administrators should urgently install the necessary security updates. But Samba servers are also vulnerable. Here is some more information on this topic.
[German]Microsoft has updated the Chromium Edge Browser to version 85.0.564.63 as of September 23, 2020. This version fixes a number of critical vulnerabilities. The browser is based on Chromium version 85.0.4183.121 and should update automatically. According to ADV200002, the browser update fixes the following vulnerabilities rated as high: CVE-2020-15960, CVE-2020-15961, CVE-2020-15962, CVE-2020-15963, CVE-2020-15964, CVE-2020-15965, CVE-2020-15966. In this Techcommunity post, Microsoft announces the introduction of the Sleeping Tabs experiment to improve CPU and memory utilization in Microsoft Edge. The Google developers had removed a similar feature in Chrome 85 (see Chrome M85: RAM optimization removed in Windows 10 2004).
[German]Incorrect settings can cause the popular Strava running and cycling app (and service) to make the user's information available to third parties nearby. For privacy reasons you should take a closer look at this and check your settings.
[German]The developers of the Tor bundle have released Tor Browser 10 as a bundle on September 22, 2020. I just got the update delivered automatically.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
