[German]Brief information for IT supporters who use 3CX as a telephone system. The provider has probably significantly reduced the functionalities of 3CX version 18 in the NFR license as of 15 November 2024. Anyone wishing to use the full functionality must switch to version 20 or purchase a Pro version. However, 3CX V20 is still said to be quite buggy, as one reader pointed out.
[German]An unpatched vulnerability (0-day) exist in the firewalls of Palo Alto Networks. The management interface can be accessed via this vulnerability. This 0-day vulneability is already being exploited for attacks. Both the BSI and the US authority CISA have issued a warning: customers should secure their firewalls immediately.
[German]Microsoft seems to have released security updates for Windows Server 2008 R2 on November 12, 2024. Anyone who had these updates installed subsequently found that the older browsers that could previously be used on these machines no longer work. However, there is now a workaround to get a browser working again. However, this is more of an exotic problem, as there are probably only a few Windows Server 2008 R2 machines still running.
Continue reading
[German]Microsoft's November 2024 security updates for Exchange, has added a new feature to its Exchange 2016 and Exchange 2019 servers. Microsoft Exchange now warns when receiving emails that exploit a spoofing vulnerability (Exchange Server non-RFC compliant P2 FROM header detection CVE-2024-49040). The only problem is that the security updates from November 2024 have currently been stopped.
[German]Brief addendum from this week. Microsoft has once again resorted to dirty tricks to force its users onto the Edge browser. The Edge browser is trying to take over the settings for tabs from the Chrome browser.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Quick note to users who use CrushFTP. A blog reader has informed me that a serious vulnerability has been discovered ans has been made public on November 11, 2024. However, there are updates in which this vulnerability, for which no CVE seems to exist yet, is closed. Here are a few details what needed to know.
[German]The EU Commission has fined Meta €797.72 million for tying its online classifieds service Facebook Marketplace to its personal social network Facebook and imposing unfair trading conditions on other providers of online classifieds services.
[German]Disaster for administrators of Microsoft Exchange Server 2016 and 2019 systems who have installed the security updates from November 12, 2024. The transport rules no longer work after applying the November 2024 security update. Microsoft has now stopped the deployment of the November 2024 security updates as of November 14, 2024 to investigate the problems.
[German]Microsoft has given users of Windows 11 23H2 a minor or major scare on November 2024 Patchday. A bug in update KB5046633 caused users to receive the message that version 23H2 had reached "end of life". An upgrade to the buggy 24H2 would be necessary. The bug has now been confirmed.
[German]On November 12, 2024, Microsoft released the security update KB5002653 for Microsoft Excel 2016 (MSI version) to close various vulnerabilities. After installing the update, add-ins can no longer be loaded.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
