Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Edge 121.0.2277.83 and Edge 120.0.2210.160 released
[German]Microsoft has released another security update for the Edge (Chromium) browser with version 121.0.2277.83 in the stable channel on January 25, 2024. It is a security update that is intended to close vulnerabilities, but also offers new functions as a … Continue reading
Hewlett Packard Enterprise (HPE) hacked by Midnight Blizzard since May 2023
[German]After Microsoft, Hewlett Packard Enterprise (HPE) has also fallen victim to the Russian hacker group Midnight Blizzard. This is according to a notification from the company to the US SECURITIES AND EXCHANGE COMMISSION (SEC). As with Microsoft, the attackers probably … Continue reading
iOS 17.3 released, closes 0-day
[German]Apple released the first update, iOS 17.3 for iPhones and iPadOS 17.3 for iPads, yesterday, January 22, 2024. In addition to a "Device Protection" function, it also fixes the first 0-day bug in the operating system. Here is a brief … Continue reading
Test Defender rules for ASR, PUA, SmartScreen etc.
[German]How do you know that Windows Defender and its configuration is correctly implemented and working? I just came across a demonstration and test page from Microsoft. Microsoft provides various files and information there to demonstrate, test and validate the Defender … Continue reading
Calendar invitation in Outlook can reveal password (via CVE-2023-35636)
[German]Small addendum to the December 2023 patchday, during which an information disclosure vulnerability (CVE-2023-35636) was also closed. It has now become known that even the acceptance of a calendar invitation by a user can reveal their password. While this vulnerability … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Is the Microsoft 365 email quarantine broken?
[German]A quick question for Microsoft 365 administrators with Exchange Online tenants. A reader is struggling with the problem that mails are sorted into quarantine at his customers and asks whether this function is broken (presumably already since January 5, 2024).
Microsoft Windows 11 Security Technical Implementation Guide
Recently I became aware of the "Security Technical Implementation Guide". The Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of … Continue reading
Microsoft hacked by Russian Midnight Blizzard; emails exfiltrated since Nov. 2023
[German]Microsoft has been successfully hacked by the Russian state hacker group Midnight Blizzard, also known as Nobelium. This was noticed on January 12, 2024, but the hackers were probably in the systems for months and were able to view and … Continue reading
NetScaler ADC and NetScaler Gateway vulnerabilities CVE-2023-6548 and CVE-2023-6549
[German]Administrators of a Citrix NetScaler ADC or a Citrix NetScaler Gateway should take action. Manufacturer Citrix has published a security advisory regarding the two vulnerabilities CVE-2023-6548 and CVE-2023-6549 in the above-mentioned products on January 16, 2024. One vulnerability allows DDoS … Continue reading
Microsoft's PowerShell script against installation error 0x80070643 for KB5034441 (Jan. 2024)
[German]The security update rolled out on January 9, 2024 via automatic update (e.g. KB5034441) against a BitLocker Security Feature Bypass vulnerability CVE-2024-20666 in the WinRE partition fails on many systems with the installation error 0x80070643. Somehow this is a disaster … Continue reading