Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Windows
Sophos: Thread actors test CAB-less 40444 (MSHTL vulnerability) attacks in Windows
[German]Security vendor Sophos published information about a new attack scenario in a series of tweets just before Christmas. Attackers are currently testing a new attack vector via RAR attachments with Word documents and scripts in mails. However, this involves distributing … Continue reading
0patch fixes ms-officecmd RCE vulnerability in Windows
[German]The security team of ACROS Security around founder Mitja Kolsek has just developed a micro patch to close a remote code execution vulnerability in the ms-officecmd handler of Windows and released it for customers with a 0patch PRO or Enterprise … Continue reading
Microsoft warns against Active Directory domain takeover due to unpatched vulnerabilities
[German]Microsoft warned of a new threat in a Techcommunity post on December 20, 2021. In November 2021 patchday, vulnerabilities CVE-2021-42287 and CVE-2021-42278 were fixed by Windows updates. Since December 2021, a proof of concept (PoC) has been available that abuses … Continue reading
Dell Windows drivers still vulnerable to kernel attacks
[German]Users of Dell systems are still at risk of having their Windows systems compromised via Dell drivers through kernel attacks. The problem was supposed to be fixed by updates as early as May 2021. However, security researchers from Rapid7 are … Continue reading
Update fixes Windows AppX installer 0-day vulnerability CVE-2021-43890 (used by Emotet)
[German]Another addendum from the December 2021 patchday regarding the AppX installer used in Windows. Microsoft has closed the Windows AppX Installer spoofing vulnerability CVE-2021-43890 with an update. The Emotet gang has been trying to exploit this vulnerability to infect systems … Continue reading
Posted in Security, Update, Windows
Tagged Patchday 12.2021, Security, Update, Windows
Leave a comment
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
0patch fixes InstallerTakeOver LPE 0-day vulnerability in Windows
[German]The ACROS Security team around founder Mitja Kolsek has now developed and released the third micro-patch within two weeks for a vulnerability discovered by security researchers. The current micro-patch is about a 0-day InstallerTakeOver Local Privilege Escalation (LPE) vulnerability in … Continue reading
Windows 10/11: The risky "trusted" Apps-Installer – abused by Emotot gang
[German]Hoh hoh, folks, today we can open the second door in the Advent calendar and see what Microsoft has put in as a surprise for us. Today we find the AppX installer, which is used in Windows 10 and Windows … Continue reading
Microsoft Defender Version 1.353.1874.0 version 1.353.1874.0 incorrectly reports Emotet
[German]A brief note for administrators. Microsoft Defender reportes a PowEmotoet.SB infection has been blocked and quarantined and possibly triggers Microsoft Office? This is a false alarm, which was triggered by an update of the signature files to version 1.353.1874.0. Here … Continue reading
Windows 10/11 mini-survey shows: Microsoft missed terrible the user needs (2021)
[German]It is sometimes hotly debated, whether Microsoft is developing Windows 10 and especially Windows 11 past the need. Susan Bradley conducted a mini-poll on SurveyMonkey weeks ago on the topic of "how satisfied are you with Windows 10/11 and the … Continue reading
0patch fixes LPE vulnerability (CVE-2021-24084) in Mobile Device Management Service
[German]There is an unpatched Local Privilege Escalation vulnerability (CVE-2021-24084) in Windows Mobile Device Management Service. The vulnerability has been known since 2020, but has not yet been patched by Microsoft. ACROS Security has therefore developed a free 0patch solution to … Continue reading