[German]Blog reader Karl (al Qamar) informed me a while ago about a problem with securiy updates for the Visual C++ runtime libraries (Redistributables). Here are his findings about the issues.
[German]Microsoft's Windows Hello authentication technology for Windows 10 isn't foolproof. Two German security researcher has been able to successful bypass Windows Hello with a printout of an image.
[German]Windows users sometimes running into error code 0x80248014 during an update. This can also occur during updating apps from the store, or when updating the virus scanners of Windows Defender or Microsoft Security Essentials.
[German]Here's a security information for administrators using Palo Alto Networks firewalls with PAN-OS . In PAN-OS there are several critical bugs, which enables attackers to gain remote root access to the firewalls.
[German]The NextGeneration Endpoint Protection solution from Fortinet, FortiClient, contains also a VPN client. This client exposes credentials, but an update is available. I don't know, if blog readers are using FortiClient, but I'm publishing the information as public service announcement here within my blog.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
A serious vulnerability in Apple's HTML rendering engine WebKit also affects the iCloud client for Windows. Apple has now released a security update of the iCloud client to fix these vulnerabilities.
[German]As part of the December patchday (12/12/2017), Microsoft has also issued a Microsoft Security Advisory Notification. It addresses the security settings for Active Directory Domain Services. And it's discusses the DDE vulnerability when opening Office documents.
[German]This blog post shows, how to define compatibility lists for ActiveX components in Internet Explorer 11. This is mandatory to allow ActiveX component execution within the browser. This topic has been raised a few days ago during fixing the broken Windows 7 Update process.
[German]On December 12, 2017 Microsoft released a couple of cumulative updates for all supported Windows 10 builds. Here is an overview what's patched.
[German]On December 12, 2017, Microsoft released a couple of updates for Windows 7, Windows 8.1, and the corresponding Windows Server versions. Here is an overview what's patched.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
