[German]Administrators of Microsoft Echange Server should take care of patching the remote code execution vulnerability CVE-2020-16875. The details or exploits have now been published. But patches has been available since September 8, 2020.
[German]In a 64-bit Windows environment, 16-bit programs can no longer run because the Windows NT DOS Virtual Machine (NTVM) is missing. A Microsoft developer has now described an approach – quasi as a finger exercise – how to run 16-bit programs under a 64-bit Windows 10.
[German]Short information for users of the Thunderbird e-mail client. The developers have released the auto-update for older 68 versions, which will upgrade them to the current 78.x version. Here is a short outline of the situation and some voices with hints what there is to know.
[German]That does not sound very good. Newly discovered vulnerabilities in Microsoft 365 make it possible to bypass multi-factor authentication. Security researchers from Proofpoint have just released this information.
[German]Security researchers have uncovered a vulnerability in all versions of Windows Server that allows domain transfer with a simple approach. This vulnerability, called Zerologon (CVE-2020-1472), was closed with the security updates of August 2020. Those who have not yet installed this patch should react as soon as possible.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]ACROS Security has released a micropatch for the vulnerability CVE-2020-1380 (Internet Explorer scripting engine memory corruption ) for Windows 7 and Server 2008 R2 (without ESU license). The vulnerability is now being exploited.
[German]Microsoft has begun rolling out the new Chromium-based Edge Browser on systems with Windows 10 version 2004 on Sept. 14, 2020. A re-release of update KB4576754 pushed this browser again to consumer systems.
Google yesterday sent out invitations to a hardware event for the end of September 2020 to the press. The event will run under the motto 'Launch Night In – Made By Google' and is scheduled to take place on September 30 at 11 a.m. Pacific time.
[German]German online shop windeln.de operated an insecure Elastic-Search server so that the personal data of 700,000 customers could be accessed via Internet. Here are details what I know so far (what the security researcher has told me).
[German]Another small addendum from last week. Microsoft has announced it's plans to include the required Servicing Stack Updates (SSU) in future Latest Cumulative Updates (LCU). This could eliminate one cause of update errors.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
