A blog about IT and other stuff :-)
Here we go again 🙁 !! Microsoft has released security updates for vulnerabilities found in: Exchange Server 2013 Exchange Server 2016 Exchange Server 2019 These updates are available for the following specific builds of Exchange Server: IMPORTANT: If manually installing security…
Read more
Microsoft has released a new, one-click mitigation tool, Microsoft Exchange On-Premises Mitigation Tool to help customers who do not have dedicated security or IT teams to apply these security updates. We have tested this tool across Exchange Server 2013, 2016, and 2019…
Read more
Microsoft has detected multiple 0-day exploits being used to attack on-premises versions of Microsoft Exchange Server in limited and targeted attacks. In the attacks observed, the threat actor used these vulnerabilities to access on-premises Exchange servers which enabled access to…
Read more
This one, wow what a pain in the a****** It took me hours to finally debug this issue. Had setup NPS on a Windows 2019 server, like many times before, registered it in the Active Directory, and installed the Use…
Read more
IMPORTANT: An old bug was dicovered in the Microsot DNS Server components, update your DNS server asap!! SIGRed (CVE-2020-1350) is a wormable, critical vulnerability (CVSS base score of 10.0) in the Windows DNS server that affects Windows Server versions 2003…
Read more
Every company, using email adresses, and have their own domain, should implement DMARC to get protection again phshing, CEO fraud and many other things, to get you started, please find info on the links here: DMARC.DK – Henrik Schack drives…
Read more
Recently, there have been sold Exploits on the dark web, for exploiting Zyxel NAS devices, but researchers have found out, that firewall’s also have the vulnerbility: https://krebsonsecurity.com/2020/02/zyxel-0day-affects-its-firewall-products-too/ Zyxel advisory – please note, not all Zyxel devices can be patched, so…
Read more
An easy to use exploit, have been discovered for Exchange 2010, 2013, 2016 and 2019, patch now. If you have a login for a normal user, you can execute code on the server as “SYSTEM” account through Exchange Control Panel…
Read more
Now it’s time to disable direct RDP access or at least patch it: Sophos have made an BlueKeep exploit which changes the Windows accessibility shortcuts, and renames utilman.exe so you get shell :-O Read more here: https://news.sophos.com/en-us/2019/07/01/bluekeep-poc-demonstrates-risk-of-remote-desktop-exploit/?cmp=30727 Video: https://vimeo.com/344915265
DANISH CONTENT THIS TIME 🙂 Fra 1/1-2019 gælder der nye regler ift. email kryptering i Danmark, disse er udstedt af datatilsynet. Det kan være svært at holde hoved og hale i alle de teknikker der er. Der nævnes bla. TLS…
Read more
By continuing to use the site, you agree to the use of cookies. more information
The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.