Tag Archives: Windows

PetitPotam attack allows Windows domain takeover

[German]There is a new attack vector called PetitPotam. This enables a threat actor to launch an NTLM relay attack on domain controllers. Ultimately, this can be used to take over entire domains. Since many organizations run domain controllers with Microsoft … Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

Advertising

PrintNightmare: Point-and-Print allows installation of arbitrary files

[German]Regarding the problem, originally called PrintNightmare, that Windows systems are vulnerable via the print spooler service, there is a new warning. A remote print server that can be accessed by unauthorized parties allows arbitrary malicious files to be installed on … Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

DevilsTongue spyware from Israeli company Candiru exploited Windows vulnerabilities

[German]After I just reported about spy Trojans of the Israeli NSO Group on smartphones (see Pegasus spy software of NSO Group on many smartphones), I can also reveal the second case. The Israeli company Candiru exploited vulnerabilities in Windows to … Continue reading

Posted in Security, Windows | Tagged , , | Leave a comment

Security Settings for Failover Clustering

[German]Security is at the forefront of many administrator’s minds and with Failover Clustering. Microsoft did some improvements with Windows Server 2019 and Azure Stack HCI with regards to security. Advertising

Posted in Security, Windows | Tagged , | Leave a comment

Microsoft Defender for Identity can detect PrintNightmare attacks

[German]Microsoft Defender for Identity (formerly Azure Advanced Threat Protection or Azure ATP) has been given the ability by Microsoft to detect and defend against attacks via the PrintNightmare vulnerability. This primarily affects exploitation of vulnerabilities in the Windows Print Spooler … Continue reading

Posted in Security, Windows | Tagged , , | Leave a comment

Advertising

Windows vulnerability PrintNightmare: It’s not over yet (July 15, 2021)

[German]Bad news for Windows users, because the issue known as PrintNightmare, which vulnerabilities in the Print Spooler service can lead to privilege escalation, still exists. The special updates of July 6 and 7, as well as the regular security updates … Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

Microsoft Security Update Summary (July 13, 2021)

[German]On July 13, 2021, Microsoft released security updates for Windows clients and servers, for Office, etc. – as well as for other products – were released. Below is a compact overview of these updates released on the July 2021 patchday. … Continue reading

Posted in Office, Security, Software, Update, Windows | Tagged , , , | Leave a comment

Microsoft on PrintNightmare vulnerability CVE-2021-34527: Windows is secure after patch

[German]Microsoft has commented on reports that the unscheduled updates to close the PrintNightmare vulnerability CVE-2021-34527 in the Windows Print Spooler service would not eliminate all risks. The message is that if the special updates are installed and Windows is configured … Continue reading

Posted in Security, Update, Windows | Tagged , , | 4 Comments
Advertising

Changes and ambiguities in driver updates via WSUS; is Windows 10 bypassing Updates via WSUS?

[German]In today’s blog post, I’ll summarize two things that German blog reader Markus K. pointed out to me by mail. Possibly there are changes in driver updates via WSUS, at least there are and ambiguities. Once he suddenly appears on … Continue reading

Posted in Update, Windows | Tagged , , , | Leave a comment

The Chaos PrintNightmare Emergency Update (July 6/7, 2021)

[German]Microsoft has released out-of-band security updates for the PrintNightmare vulnerability (CVE-2021-1675) in the Windows Print Spooler service. But these updates seem to end in chaos – it reminds me on the Printer-Gate in March 2021, where Microsoft had to release … Continue reading

Posted in Security, Update, Windows | Tagged , , , , | 6 Comments