[German]ACROS Security has released a micropatch for the Windows Print Spooler Elevation of Privilege vulnerability CVE-2020-1048 in Windows 7 and Server 2008 R2 (without ESU license).
[German]On May 20, 2020, Microsoft has updated another batch of microcode updates for Windows 10 version 1507 to 1909 (but these are probably old updates that were already updated in February 2020 as well).
[German]An immediate warning: It seems that cyber criminals has obtained an old (orphaned) Amazon AWS S3 bucked used some times ago to host a Cookie Consent solution. Now the Cookie Consent logo delivered from the Amazon CDN contains a malware/ransomware script. It seems, that thousands of website, using old code, are shipping now this malicious content. Probably it's a ransomware attack. Here is what I've found out so far.
[German]Microsoft released version 0.18 of PowerToys for Windows 10 users a few hours ago. These tools are free and offer additional features for Windows 10. The new version 0.18 includes the new Run launcher. Addendum: Clint Rutkas has announced, that version 0.18.1 is 'coming this night', but till now, I haven't found a change log.
[German]Google's developers have released the Chrome Browser in version 83 on 19 May 2020. The browser update now automatically uses DNS-over-HTTPS. The update also closes 83 security holes of earlier versions.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German] British airline EasyJet was the victim of a cyber attack. The attackers were able to extract customer data (such as e-mail addresses, travel data) from around nine million customers. There were also 2,000 credit card records among them. Addendum: The hack was bigger as confirmed earlier.
[German]There has been a security incident at Mercedes Benz. A Swiss engineer found a GitLab server where he could create an account and then access the source code of onboard logic units (OLUs). These OLUs are built into the new 'Smart Car' models of the Mercedes-Benz VANs (Vito, eVito) and allow the use of Daimler digital services.
[German]Oracle's developers have already released Virtualbox version 6.1.8 (as well as 6.0.22 and 5.2.42) on 15 May 2020. These are maintenance updates, which should fix bugs of earlier versions.
[German]A poorly patched vulnerability CVE-2019-0887 in Windows makes the systems vulnerable to attacks via third-party RDP applications. It could also allow a client used to establish the RDP connection to be attacked by malware on the remote machine.
[German]Microsoft Germany has send a cease and desist to Berlin's Commissioner for Data Protection and Freedom of Information. An action that leaves many observers somewhat speechless. The warning concerns guidelines for video conferencing, which provide information on test criteria for the safe use (also GDPR) of videoconferencing in companies and public authorities.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
