Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Windows
Avast Anti-Rootkit Driver Used in Ransomware Attack to Increase Authorization
[German]Ransomware groups continue to develop new tactics, techniques, and procedures (TTPs) to bypass protections during attacks. On the other hand, protections on endpoints and networks continue to evolve. The Microsoft Detection and Response Team (DART) published a case report the … Continue reading
Windows 0-day (Mark of the Web) used for ransomware attacks via JavaScript
[English]The days I had reported about an unfixed 0-day vulnerability, Mark of th e Web (MOTOW), in Windows for which there is an unofficial fix. Now a report has come to my attention that a 0-day vulnerability in this area … Continue reading
SSL/TLS connection issue fix: out-of-band update status and affected applications (Oct. 21, 2022)
[German]As of October 17, 2022, Microsoft has released several unscheduled updates for Windows. These updates fix a connection problem that can occur with SSL and TLS connections. Affected by this problem are probably all Windows client and server. Below I … Continue reading
Windows: 0Patch Micropatch for MOTOW ZIP file bug (0-day, no CVE)
[German]Since May 2022, a bug has been known to exist in Windows that prevents the "Mark of the Web" flag from being set for files extracted from ZIP archives. Microsoft itself has not yet released a patch for this 0-day … Continue reading
Out-of-band updates for Windows fixes SSL-/TLS connection issues (also with Citrix) – October 17, 2022
[German]As of October 17, 2022, Microsoft has released an unscheduled update KB5020387 for Windows 11 21H2. This update fixes a connection problem that can occur with SSL and TLS connections. All Windows client and server versions that are still in … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Windows Update KB5012170 (Secure Boot DBX) re-released for WSUS (Oct. 2022)
[German]Brief information for administrators in the Windows environment. A reader just informed me that Windows Update KB5012170 has been re-released in WSUS. This update was released on Patchday, August 9, 2022 to fix issues in Secure Boot DBX. However, this … Continue reading
LockSmith: Search for AD Certificate Services misconfigurations via PowerShell script
[German]Small tip for administrators of an Active Directory environment on Windows Server. There is a small PowerShell script to identify and fix common misconfigurations in Active Directory Certificate Services. I became aware of the tool via this tweet. he tool … Continue reading
Has Microsoft shown a GUI prototype of the next Windows (accidentally) at Ignite?
[German]At Microsoft's Ignite conference, which took place last week, there were numerous presentations about new Microsoft products. It seems that a GUI of a Windows desktop appeared, which has nothing to do with current Windows 10/Windows 11 desktops. So there … Continue reading
BlackByte ransomware disables security solutions via Windows drivers
[German]The developers of the BlackByte ransomware exploit a vulnerability in a legitimate Windows driver (from Micro-Star's MSI AfterBurner 4.6.2.15658) to bypass security solutions. Security researchers from Sophos recently pointed this out in a report. This technique is known as BYOVD … Continue reading
Microsoft back ports brute force protection of administrator accounts for Windows
[German]Microsoft has back ported a group policy from Windows 11/Windows Server 2022, to protect local administrator accounts against brute-force attacks, to all supported Windows versions. This feature will be available with the Windows security updates released on October 11, 2022. … Continue reading