Tag Archives: Windows

Malware targets the Windows Subsystem for Linux (WSL)

Posted on 2021-09-18 by guenni

[German]Security researchers from Lumen's Black Lotus Labs have come across several malware samples that can infect the Windows subsystem for Linux and then switch to the native Windows environment. Experts had outlined this scenario back in 2017. Thus, the Microsoft … Continue reading

Posted in Linux, Security, Windows | Tagged , , , | Leave a comment

Patch day recap Sept. 2021: Update on MSHTML vulnerability CVE-2021-40444

Posted on 2021-09-17 by guenni

[German]The vulnerability CVE-2021-40444 in the Windows MSHTML library has been known public since September 7, 2021. Actors attempt to attack Windows machines via this vulnerability using manipulated Office files. As of September 14, 2021, Microsoft has addressed the vulnerability in … Continue reading

Posted in Office, Security, Update, Windows | Tagged , , , , , | Leave a comment

Patchday Sept. 2021 Review: New PrintNightmare fix, new issues, new desaster?

Posted on 2021-09-16 by guenni

[German]For months, a number of vulnerabilities in the Windows Print Spooler service, which are summarized under the term PrintNightmare, have existed in all Windows versions. Microsoft has been trying to close the vulnerabilities completely since July 2021 to no avail. … Continue reading

Posted in issue, Security, Update, Windows | Tagged , , , , , , | Leave a comment

Microsoft Security Update Summary (September 14, 2021)

Posted on 2021-09-15 by guenni

[German]On September 14, Microsoft released security updates for Windows clients and servers, for Office, etc. – as well as for other products – were released. These include fixes for PrintNightmare as well as for the MSHTML vulnerability. Below is a … Continue reading

Posted in Office, Security, Update, Windows | Tagged , , , , | Leave a comment

Vulnerability in HP OMEN Gaming Hub

Posted on 2021-09-14 by guenni

[German]Security researchers from SentinelOne have now found a serious vulnerability in the HP OMEN Gaming Hub. The vulnerability in the HP OMEN gaming software driver allows attackers to gain system privileges. This allows system intrusions and malware injection for non-privileged … Continue reading

Posted in devices, Security, Windows | Tagged , , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Disaster Windows MSHTML vulnerability CVE-2021-40444, hopefully a patch will come today

Posted on 2021-09-14 by guenni

[German]Will Microsoft deliver a security update to close the vulnerability CVE-2021-40444 in the Windows MSHTML library today, September 14, 2021? And most importantly: If a patch is coming, will it close the vulnerability, or is it just a placebo? Since … Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

Overview: TLS support in Windows

Posted on 2021-09-12 by guenni

[German]A little question regarding transport encryption for data connections in the network or to the Internet. There are different versions of the transport encryption protocols and with time, for example, the support for TLS 1.0 etc. is dropped for security … Continue reading

Posted in Security, Windows | Tagged | Leave a comment

Google Project Zero: 0-day vulnerability in Windows AppContainers disclosed

Posted on 2021-09-11 by guenni

[German]Another brief addendum to a topic that has been on my stack for a few days already. James Forshaw from Google Project Zero disclosed a vulnerability in Windows AppContainers as early as mid-August 2021, which allows communication via the firewall … Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

Attack via Office Documents on Microsoft MSHTML (ActiveX) RCE Vulnerability (CVE-2021-40444)

Posted on 2021-09-08 by guenni

[German]Microsoft has issued a warning about the remote code execution vulnerability CVE-2021-40444 as of September 7, 2021. In campaigns, this vulnerability, which targets the MSHTML component of Internet Explorer, is exploited via compromised Office documents. Microsoft provides guidance on mitigating … Continue reading

Posted in browser, Office, Security, Windows | Tagged , , , | Leave a comment

Turn off Defender in Windows with symbolic links

Posted on 2021-09-07 by guenni

[German]Symbolic links allow to disable Defender as antivirus protection under Windows without disabling features like Tamper Protection. The approach simply lets Defender run into the woods during scanning, because the virus scanner is redirected to other folders. I came across … Continue reading

Posted in Security, Windows | Tagged , , | Leave a comment