Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Patchday: Windows 10-Updates (May 9, 2023)
[German]On May 9, 2023 (second Tuesday of the month, patchday at Microsoft), several cumulative updates were released for the supported Windows 10 builds (from RTM version to current version) as well as for the Windows Server counterparts. Here are some … Continue reading
Microsoft Security Update Summary (May 9, 2023)
[German]On May 9, 2023, Microsoft released security updates for Windows clients and servers, for Office – as well as for other products. The security updates fix 37 CVE vulnerabilities, six of which are critical and 36 are classified as important. … Continue reading
Posted in Office, Security, Update, Windows
Tagged Office, Patchday 5.2023, Security, Update, Windows
Leave a comment
Exchange Online: Microsoft will now block mails from unpatched Exchange systems
[German]Microsoft has again reminded on May 8, 2023, that as a security measure for Exchange Online, they will now start to delay the delivery of mails from (on-premises) Exchange servers if these systems have fallen out of support or are … Continue reading
Microsoft Security Compliance Toolkit 1.0 – "the dark side"
[German]At the beginning of April 2023, Microsoft released a new version of its Microsoft Security Compliance Toolkit 1.0. Actually, it is a compulsory exercise for administrators in companies to deal with this part. In the following, I will briefly introduce … Continue reading
Microsoft started enforcing number matching on MFA since May 8, 2023
[German]Just a reminder to administrators who are responsible for Microsoft's cloud environments (Azure, etc.) in companies. It has probably been known for a long time, but as of May 8, 2023, the provider Microsoft will switch its multi-factor authentication (MFA) … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Western Digital informs customers about hack (May 5, 2023)
[German]At the beginning of April 2023, the hard drive manufacturer Western Digital had already admitted to a cyber incident in which data was stolen. In an email to customers as of May 5, 2023, the manufacturer informs its customers about … Continue reading
Windows and the cURL trap; deleted curl instance breaks Windows update
[German]Microsoft delivers the cURL library with the operating system since Windows 10. However, Redmond does not manage to update the delivered cURL version promptly when security vulnerabilities become known. This leads to the fact that Curl versions with known vulnerabilities … Continue reading
Palo Alto Networks Unit 42 Cloud Threat Report Volume 7 (April 2023)
[German]The run on the cloud continues unabated, but the number of vulnerabilities and security threats is steadily increasing. Misconfigurations, weak credentials, lack of authentication, unpatched vulnerabilities and malicious (infected) open source software (OSS) threaten security. Some developers hard-pack credentials into … Continue reading
RCE vulnerability in Cisco SPA112 2-port phone adapter, drop that device
[German]US provider Cisco warns in a message about a critical vulnerability in one of its phone adapters. This vulnerability allows an attacker to take control of the device. Unfortunately, affected users can only dispose of this phone adapter, since the … Continue reading
DNSteal: Data Exfiltration and Tunneling via DNS – Techniques and Detection
[German]A security topic that was not really on my radar: data theft through manipulation of the Domain Name System (DNS). The whole thing goes under the terms DNSteal and DNS Exfiltration. Roughly speaking, these are techniques that can be used … Continue reading