Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Patchday: Windows 11/Server 2022 Updates (January 9, 2024)
[German]On January 9, 2024 (second Tuesday of the month, patch day at Microsoft), Microsoft also released cumulative updates for Windows 11 23H2 to 21H2. Windows Server 2022 also received an update. Here are some details about these updates, which are … Continue reading
Posted in Security, Update, Windows
Tagged Patchday 1.2024, Security, Update, Windows 11, Windows Server 2022
Leave a comment
Patchday: Windows 10 Updates (January 9, 2024)
[German]On January 9 (second Tuesday of the month, Patchday at Microsoft), various cumulative updates were released for the supported Windows 10 builds (from the RTM version to the current version) as well as for the Windows Server counterparts. Here are … Continue reading
Microsoft Security Update Summary (January 9, 2024)
[German]On January 9, 2024, Microsoft released security updates for Windows clients and servers, for Office and for other products. The security updates eliminate 48 vulnerabilities (CVEs), two of which are critical vulnerabilities. Below is a compact overview of these updates … Continue reading
Important dates for Windows hardening in 2024
[German]Brief short note before the first patchday in 2024: Microsoft is carrying out hardening measures for Windows (clients and servers) over longer periods of time, where functions are secured via Windows Update on certain dates. Some of these hardening measures … Continue reading
Swedish Coop Group fell victim to Cactus ransomware in December 2023
[German]The Swedish Coop supermarket group has probably fallen victim to another cyberattack. I read a few days ago that the ransomware group Cactus, which has been operating since 2023, listed Coop as a victim on its Tor leak page. In … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Undocumented Google OAuth function misused by malware for account hijacking
[German]There is an undocumented feature in Google's OAuth implementation that is being abused by several malware strains. These use an exploit that allows them to recover expired cookies. This allows them to then log in to online accounts, steal information … Continue reading
Microsoft disables ms-appinstaller protocol again; CVE-2021-43890 misused by ransomware
[German]Microsoft has disabled the MSXI ms-appinstaller protocol because it was being abused by malware groups. I remembered, that the vulnerability CVE-2021-43890 has been patched in Dec. 2021 and the protocol has been disabled long ago. Here is an overview of … Continue reading
Denial of Service vulnerability CVE-2022-44684 in Windows Local Session Manager (LSM)
[German]A brief security information. Shortly before Christmas, a warning popped up about a Denial of Service vulnerability in the Windows Local Session Manager (LSM). However, this DoS vulnerability with the CVE identifier CVE-2022-44684 is quite "strange". The identifier indicates that … Continue reading
Security: Social Engineering and VPN access
[German]I often report on cyber attacks on companies here on the blog. In general, headlines about security incidents at large companies seem to be piling up. Fortunately, when companies release details about the incident, the security community can learn about … Continue reading
Asper Biogene: genetic data stolen from 10,000 Estonians
[German]Security and data protection incident in Finland involving patient health data. The genetic testing company Asper Biogene announced that unknown persons had accessed its database and the genetic data of around 10,000 people from Estonia who had applied for genetic … Continue reading