Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Patchday: Windows 11/Server 2022-Updates (March 12, 2024)
[German]On March 12, 2024 (second Tuesday of the month, patch day at Microsoft), Microsoft also released cumulative updates for Windows 11 23H2 to 21H2. Windows Server 2022 and Windows Server 23H2 also received updates. Here are some details about these … Continue reading
Posted in Security, Update, Windows
Tagged Patchday 3.2024, Security, Update, Windows 11, Windows Server
Leave a comment
Patchday: Windows 10-Updates (March 12, 2024)
[German]On March 12, 2024 (second Tuesday of the month, Patchday at Microsoft), various cumulative updates were released for the supported Windows 10 builds (from the RTM version to the current version) as well as for the Windows Server counterparts. Here … Continue reading
Posted in Security, Update, Windows
Tagged Patchday 3.2024, Security, Update, Windows 10
Leave a comment
Microsoft Security Update Summary (March 12, 2024)
[German]On March 12, 2024, Microsoft released security updates for Windows clients and servers, for Office – and for other products. The security updates eliminate 73 vulnerabilities (CVEs), two of which are 0-day vulnerabilities that are already being exploited. Below is … Continue reading
Microsoft Outlook RCE vulnerability CVE-2024-21378; patched in February 2024
[German]On February 13, 2024, the remote code execution vulnerability CVE-2024-21378 in Microsoft Outlook was also closed with the security updates. As of March 11, 2024, an in-depth analysis of the vulnerability has now been published, as I saw in a … Continue reading
Critical vulnerability CVE-2024-21899 allows QNAP NAS access without authentication
[German]Owners of QNAP NAS drives are at risk from the critical vulnerability CVE-2024-21899. This allows access to devices without requiring authentication via username and password. The manufacturer has released security updates to its vulnerable operating systems to close the vulnerability.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Critical vulnerabilities in VMware products (March 5, 2024)
[German]A short addendum from last week. I recently reported on updates to VMware products. VMware has now classified certain vulnerabilities in its virtualization products as critical in a security advisory. It should therefore be patched quickly, if not already done. … Continue reading
Posted in Security, Software, Update, Virtualization
Tagged Security, Update, VMware
Leave a comment
After Facebook glitch (March 5, 2024): Have you been able to log in to other people's accounts?
[German]Follow-up to this week's Facebook disruption, where users were forcibly logged out and could only log back in after a few hours. A reader has contacted me and reported that he was able to log in to Facebook under a … Continue reading
Microsoft confirms: Russian spies (Midnight Blizzard) stole source code while accessing systems
[German]Microsoft has now had to confirm that Russian cyber spies from the Midnight Blizzard group not only had access to the email accounts of Microsoft management in January 2024. The attackers were also able to gain access to internal systems … Continue reading
New variant of the Solarwinds attack technique discovered in 2020
[German]The hack of numerous (US) authorities and companies via Solarwinds software in 2020 is probably still fresh in the minds of many readers. Now the Semperis security research team has discovered a new variant of "golden SAML", an attack technique … Continue reading
Microsoft closes exploited Windows 0-day vulnerability CVE-2024-21338 six months after notification
[German]In February 2024, Microsoft closed the vulnerability CVE-2024-21338 in the kernel of Windows 10/11 and various Windows Server versions. Great! The flaw in the story: The vulnerability was reported by AVAST in August 2023, and the vulnerability was exploited as … Continue reading