[German]As of April 22, 2020, Microsoft has released a cumulative update (KB4558244) for the Windows 10 version 2004 for insiders in the slow ring. This update raises the build to 19041.208. It fixes an issue that prevents NPLogonNotify API notifications from being sent from the Credential Provider Framework. The announcement was published in the Windows Blog.
[German]ACROS Security has released a micropatch for the memory corruption vulnerability CVE-2020-0687 in TTF fonts for Windows 7 and Server 2008 R2 (without ESU).
[English]On April 22, 2020, Microsoft released the Windows 10 Insider Preview Build 19613.1000 (20H2 development branch) for insiders in the Fast Ring. Microsoft describes in the Windows Blog the new features, bug fixes and known issues of this build.
[German]Security researchers have just revealed four unpatched vulnerabilities in IBM Data Risk Manager. The vulnerabilities were reported to IBM, but IBM rejected the report due to lack of formal requirements. Three vulnerabilities are considered critical.
[German]Google released the update to Chrome 81.0.4044.122 on April 21, 2020. This is an unscheduled security update which closes several (critical) vulnerabilities.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Microsoft has published Security Advisories for a critical RCE vulnerability (CVE-2020-0905) in Microsofts Dynamics Business Central. And there are security advisories for an update to the Autodesk FBX Library and for an OpenSSL Remote Denial of Service vulnerability.
Brief information for users of Sophos UTM. In mid-April 2020, in the article Stop: Don't install Sophos UTM 9.703 Firmware, I reported that the firmware update was pulled due to issues. Users should not install this update. Sophos has updated now it's advisory and acknowledged the errors. A revised firmware is now in tests – if that shows no problems, a revised version of the firmware will be available this week. I have added details in the linked article. Thanks to Thorsten for pointing this out.
[German]On April 21, 2020, Microsoft released a monthly preview rollup for Windows 8.1 as well as optional updates for various Windows 10 versions. Here is an overview about these optional updates.
[German]A remote code execution vulnerability exists in the two PDF programs Foxit PDF Reader and PhantomPDF. However, the vendor has already released updates to close the critical vulnerability – I had pointed this out. Now some more details have become known.
[German]Security researchers from Rack911 Labs describe a technique that can be used to leverage and disable almost any antivirus software on Windows or macOS. Although some AV vendors has improved their products, it's not a good news for fans of antivirus software.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
