Recent Comments

    Blogroll

    Search

    Problems with Timeline or Cloud Clipboard syncing?

    March 20th, 2019 by

    Windows 10 Update 1809 – Syncing of Timeline no longer working and Cloud Clipboard doesn’t sync either

    If you encounter this, try the following instructions. If the 3 keys don’t exist, create them.

    Step 1: Press the ‘Windows‘ key and the ‘R‘ key from your keyboard and type ‘Regedit‘ and hit Enter.

    Step 2: On the left pane of the Registry Editor window, navigate toHKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System

    Step 3: One the right pane of System, see if you have the following registry DWORDs:

    • EnableActivityFeed
    • PublishUserActivities
    • UploadUserActivities

    Step 4Double click on each of these DWORDs and check if the Value Data is 1. (Change the Value Data to 1 if there is some other data).

    Step 5: If you don’t see the above 3 DWORDS on the right pane of System, then just right click on the right pane and click on New > DWORD (32-bit) value and change the name to EnableActivityFeed and double click on EnableActivityFeed and change the Value data to 1.

    Step 6: Follow the Step 4 and create two more DWORDs for PublishUserActivities and UploadUserActivities. (Make sure to change the Value data to 1 for all the 3 DWORDs).

    Step 7: Restart the PC once and check for the issue.

    Posted in Updates | No Comments »

    Security Mailer (2019 #11)

    March 17th, 2019 by

    Security Mailer Volume 19 Number 11

    • Adobe security updates:
      • Digital Editions
      • Photoshop
    • Mozilla launches Firefox Send
    • Cisco Security Advisories
    • Linux updates
    • Microsoft:
      • Tuesday patches over 60 vulnerabilities including two 0-days that are already being exploited
      • Security Update Revisions
      • Security Advisories
      • Office updates
      • SHA-2 code signing
    • General Security reviews last two weeks vulnerabilities
    • VM Ware Security Advisories

    Posted in Newsletters, Patches, Updates | No Comments »

    Multi-Factor Bypassed (Office 365 and G Suite)?

    March 16th, 2019 by

    Multi-Factor Auth Bypassed in Office 365 and G Suite IMAP Attacks

    “Massive IMAP-based password-spraying attacks successfully breached Microsoft Office 365 and G Suite accounts, circumventing multi-factor authentication (MFA) according to an analysis by Proofpoint.

    This technique takes advantage of the fact that the legacy authentication IMAP protocol bypasses MFA, allowing malicious actors to perform credential stuffing attacks against assets that would have been otherwise protected.”

    Posted in Security Breeches | No Comments »

    March 2019 Patch Tuesday – Known Issues

    March 14th, 2019 by

    Thanks to Michael L. Bell, MCP Lead DS Analyst II  – Security  Patch Management

    KB Article Applies To
    4489878 Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Monthly Rollup)

    Symptom Workaround
    After installing this update, Internet Explorer 10 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:

    • Cache size and location show zero or empty.
    • Keyboard shortcuts may not work properly.
    • Webpages may intermittently fail to load or render correctly.
    • Issues with credential prompts.
    • Issues when downloading files.
    Create unique user accounts so that two people don’t share the same user account when logging on to a Windows Server machine. Additionally, disable multiple RDP sessions for a single user account for a specific Windows Server.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

    4489881 Windows 8.1, Windows Server 2012 R2 (Monthly Rollup)

    Symptom Workaround
    After installing this update, Internet Explorer 11 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:

    • Cache size and location show zero or empty.
    • Keyboard shortcuts may not work properly.
    • Webpages may intermittently fail to load or render correctly.
    • Issues with credential prompts.
    • Issues when downloading files.
    Create unique user accounts so that two people don’t share the same user account when logging on to a Windows Server machine. Additionally, disable multiple RDP sessions for a single user account for a specific Windows Server.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

    4489882 Windows 10 version 1607, Windows Server 2016

    Symptom Workaround
    For hosts managed by System Center Virtual Machine Manager (SCVMM), SCVMM cannot enumerate and manage logical switches deployed on the host after installing the update.

    Additionally, if you do not follow the best practices, a stop error may occur in vfpext.sys on the hosts.

    1. Run mofcomp on the following mof files on the affected host:
      • Scvmmswitchportsettings.mof
      • VMMDHCPSvr.mof
    2. Follow the best practices while patching to avoid a stop error in vfpext.sys in an SDN v2 environment (NC managed hosts).

     

    After installing KB4467684, the cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the group policy “Minimum Password Length” is configured with greater than 14 characters. Set the domain default “Minimum Password Length” policy to less than or equal to 14 characters.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

    After installing this update, Internet Explorer 11 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:

    • Cache size and location show zero or empty.
    • Keyboard shortcuts may not work properly.
    • Webpages may intermittently fail to load or render correctly.
    • Issues with credential prompts.
    • Issues when downloading files.
    Create unique user accounts so that two people don’t share the same user account when logging on to a Windows Server machine. Additionally, disable multiple RDP sessions for a single user account for a specific Windows Server.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

    After installing this update, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

    Group Policy editor may also be affected when editing a Group Policy Object (GPO) that contains a Group Policy Preference for Internet Settings.

    Microsoft is working on a resolution and will provide an update in an upcoming release
    4489883 Windows 8.1, Windows Server 2012 R2 (Security-only update)

    Symptom Workaround
    After installing this update, Internet Explorer 11 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:

    • Cache size and location show zero or empty.
    • Keyboard shortcuts may not work properly.
    • Webpages may intermittently fail to load or render correctly.
    • Issues with credential prompts.
    • Issues when downloading files.
    Create unique user accounts so that two people don’t share the same user account when logging on to a Windows Server machine. Additionally, disable multiple RDP sessions for a single user account for a specific Windows Server.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

    4489884 Windows Server 2012 (Security-only update)

    Symptom Workaround
    After installing this update, Internet Explorer 10 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:

    • Cache size and location show zero or empty.
    • Keyboard shortcuts may not work properly.
    • Webpages may intermittently fail to load or render correctly.
    • Issues with credential prompts.
    • Issues when downloading files.
    Create unique user accounts so that two people don’t share the same user account when logging on to a Windows Server machine. Additionally, disable multiple RDP sessions for a single user account for a specific Windows Server.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

    4489885 Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Security-only update)

    Symptom Workaround
    After installing this update, Internet Explorer 10 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:

    • Cache size and location show zero or empty.
    • Keyboard shortcuts may not work properly.
    • Webpages may intermittently fail to load or render correctly.
    • Issues with credential prompts.
    • Issues when downloading files.
    Create unique user accounts so that two people don’t share the same user account when logging on to a Windows Server machine. Additionally, disable multiple RDP sessions for a single user account for a specific Windows Server.

    Microsoft is working on a resolution and will provide an update in an upcoming release

    4489891 Windows Server 2012 (Monthly Rollup)

    Symptom Workaround
    After installing this update, Internet Explorer 10 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:

    • Cache size and location show zero or empty.
    • Keyboard shortcuts may not work properly.
    • Webpages may intermittently fail to load or render correctly.
    • Issues with credential prompts.
    • Issues when downloading files.
    Create unique user accounts so that two people don’t share the same user account when logging on to a Windows Server machine. Additionally, disable multiple RDP sessions for a single user account for a specific Windows Server.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

    4489899 Windows 10 version 1809, Windows Server 2019

    Symptom Workaround
    After installing this update, Internet Explorer 11 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:

    • Cache size and location show zero or empty.
    • Keyboard shortcuts may not work properly.
    • Webpages may intermittently fail to load or render correctly.
    • Issues with credential prompts.
    • Issues when downloading files.
    Create unique user accounts so that two people don’t share the same user account when logging on to a Windows Server machine. Additionally, disable multiple RDP sessions for a single user account for a specific Windows Server.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

    After installing this update on machines that have multiple audio devices, applications that provide advanced options for internal or external audio output devices may stop working unexpectedly. This issue occurs for users that select an audio output device different from the “Default Audio Device”. Examples of applications that may stop working include:

    • Windows Media Player
    • Realtek HD Audio Manager
    • Sound Blaster Control Panel
     

    As a temporary solution, select the “Default Audio Device” in the options provided by the application; please refer to the application’s user manual for details.

    For example, to set the Default Audio Device in Windows Media Player:

    1. Open Windows Media Player > Tools > Options > Devices.
    2. Select the device and choose Properties.
    3. On the next dialog, from the drop-down menu under Select the Audio Device, choose Default Audio Device from the list.

    You can then send audio from the application to the audio device you want in the per-application audio settings found under Settings > System > Sound > App Volume and device preferences.

    Microsoft is working on a resolution and estimates a solution will be available in late March 2019.

    After installing this update, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

    Group Policy editor may also be affected when editing a Group Policy Object (GPO) that contains a Group Policy Preference for Internet Settings.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

     

    Posted in Patches, Updates | No Comments »

    Office Updates (March 2019)

    March 14th, 2019 by

    This month, there are 6 security updates

    https://support.microsoft.com/en-us/help/4462226/description-of-the-security-update-for-office-2010-march-12-2019

    https://support.microsoft.com/en-us/help/4462199/description-of-the-security-update-for-sharepoint-server-2019-march-12

    https://support.microsoft.com/en-us/help/4462211/description-of-the-security-update-for-sharepoint-enterprise-server

    https://support.microsoft.com/en-us/help/4462184/description-of-the-security-update-for-sharepoint-server-2010-march-12

    https://support.microsoft.com/en-us/help/4462208/description-of-the-security-update-for-sharepoint-foundation-2013

    https://support.microsoft.com/en-us/help/4462202/description-of-the-security-update-for-sharepoint-enterprise-server

    (Thanks, Susan Bradley)

    Posted in Patches, Updates | No Comments »

    Adobe Security Bulletins Posted

    March 14th, 2019 by

    Security Bulletins Posted

    Adobe has published security bulletins for Adobe Digital Editions and Adobe Photoshop CC. Adobe recommends users update their product installations to the latest versions using the instructions referenced in the bulletin.”

    Posted in Patches, Updates | No Comments »

    Patch Tuesday (March 2019)

    March 13th, 2019 by

    Patch Tuesday, March 2019 Edition

    Posted in Newsletters, Patches, Updates | No Comments »

    Microsoft: Less Malware… More Phishing

    March 5th, 2019 by

    Microsoft Sees 250% Phishing Increase, Malware Decline by 34%

    “Phishing attacks have seen an impressive 250% increase between January and December 2018, with attackers moving to multiple points of attacks during the same campaign, switching between URLs, domains, and servers when sending e-mails and hosting phishing forms.”

    Posted in Identity Theft, Malware, Phishing | No Comments »

    Security Mailer (2019 #9)

    March 3rd, 2019 by

    Security Mailer Volume 19 Number 9

    • Adobe Security
      • updates for Cold Fusion,
      • Shockwave retirement announced
    • Browsers – Mozilla updates
      • Thunderbird
      • Firefox
    • Cisco security advisories include urgent fix for Wireless-N VPN routers
    • Linux updates
    • General Security reviews last week
      • Drupal sites hacked
      • WinRAR now under active attack
      • DMA attacks

    Posted in Newsletters, Updates | No Comments »

    Security Mailer (2019, # 8)

    February 24th, 2019 by

    Security Mailer Volume 19 Number 8

    • Browsers
      • Pale Moon update
      • Firefox ESR update
    • Cisco Security Advisories
    • Linux security updates
    • Microsoft
      • Security Update revisions
      • Very important Windows 7 update coming
      • Security Advisories
    • General Security section
      • US CERT reviews last weeks vulnerabilities
      • WinRAR patches severe vulnerability affecting all releases for the past 19 years
    • VMware Security Advisories

    Posted in Newsletters, Updates | No Comments »

    « Previous Entries