The ALPC vulnerability (CVE-2018-8440), which is present in all supported and unpatched Microsoft Windows versions, is now being exploited by the Metasploit Kit.
Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Windows ALPC vulnerability (CVE-2018-8440) used in Exploit Kit
Windows: Trouble with Updates KB3177467, KB4346084, KB41000347
[German]Here is a collection of potentially helpful information for administrators about installation issues related to microcode update KB4346084 (Windows 10 V1803) and the issue of missing Servicing Stack Update (SSU) for KB3177467 (Windows 7 SP1 and server counterparts). Microcode Update KB41000347 also breaks Overclocking on Haswell-E-CPUs.
Tip: Delete Hyper-V VMs with a GUI tool
If you use Hyper-V on Windows, you can add, run, or remove guest operating systems from the Hypere-V administrative Console. More convenient would be a tool with GUI to delete VMs.
The costs of a data breach
IBM Security and Ponemon Institute have released the 2018 Cost of Data Breach Study, based on conducted interviews with more than 2,200 IT, data protection, and compliance professionals from 477 companies that have experienced a data breach over the past 12 months.
Information about Windows NTFS Alternative Data Streams
[German]Within my blog post Windows Explorer: Strange ZIP handling? the topic NTFS Alternative Data Streams has been briefly mentioned in connection with Windows. Since I haven't covered this topic within my blog yet, and because the information isn't generally known, I will take a look at NTFS ADS in this article.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Windows Explorer: Strange ZIP handling?
[German]Windows Explorer supports the packing and unpacking of ZIP archive files. However, in Windows 7 to Windows 10 this function is probably implemented differently from what other tools do. This sometimes leads to 'strange' effects, which can be explained with some background knowledge.
Firefox 62.0.2 released
Mozilla's developers released version 62.0.2 of the Firefox browser on September 21, 2018. This is a maintenance update which corrects some bugs and closes vulnerabilities.
Windows: Compatibiliy Update KB3150513 (Sept. 21, 2018)
[German]Microsoft has released again on September 21, 2018 the compatibility update KB3150513 for Windows 7 SP1, Windows 8.1 and the still supported versions of Windows 10.
Windows 0-day vulnerability in Jet Engine (Sept. 2018)
[German]There is a zero day vulnerability in Microsoft's Jet Engine, which is used in applications under Windows. The vulnerability is unpatched, but not critical.
Windows (Update) drops error 0xE06D7363
[German]Windows 10, but also older Windows versions and applications occasionally report an error code 0xE06D7363 and abort the operation. The blog post tries to provide some background information about this error.