[German] Advertising The Bitlocker encryption used by Microsoft for Windows for data storage devices can be bypassed by software via the Bitpixie vulnerability (CVE-2023-21563) if certain boundary conditions apply. A security researcher has shown how the master key can be read from the RAM and used for decryption within minutes without a hardware hack if pre-boot authentication is…
↧
Windows: Bitlocker encryption via Bitpixie (CVE-2023-21563) leveraged
↧
Windows 10/11: Defender can be deactivated with a simple tool (Defendnot)
[German]Microsoft has built an interface (API) into Windows 10 and Windows 11 that allows manufacturers of antivirus software to disable Microsoft Defender when they install it. Some people (including a blog reader) have now shown how to deactivate Windows Defender using simple software (no-defender or Defendnot). Advertising I have to add the topic, because German blog reader…
↧
↧
Windows 11 24H2: Update KB5058411 fails with error 0x800f081f
[German]A quick question to the blog readers as to whether the installation of the May 2025 update KB5058411 for Windows 11 24H2 went through. I have received a request from readers asking if I have any information about the KB5058411 error. It is a rather generic error that can have many causes. It can often only be solved by Inplace Upgrade. Advertising Cumulative update…
↧
Windows 10: Out-of-Band Update KB5061768 for Bitlocker issue (May 19, 2025)
[German]With the Windows 10 22H2 update of May 13, 2025, there was the problem that numerous systems got stuck in WinRE with a request for the Bitlocker recovery key. When the key was entered, some systems entered a boot loop. Microsoft has released an out-of-band update on May 19, 2025, which should fix the problems. Advertising Update KB5058379 for Windows 10 22H2 from May 13…
↧
Windows Subsystem for Linux is now Open Source
[German]At the BUILD 2025 developer conference, Microsoft announced that it had released WSL (Windows Subsystem for Linux) as open source and is being celebrated by developers. The hope from Redmond is that software developers can now contribute to WSL and create their own versions. Advertising I read this "news" on various websites during the night – and the following tweet from…
↧
↧
Windows 11 24H2/Server 2025: Why is the May 2025 update KB5058411 over 4.3 GB in size?
[German]On May 13, 2025, Microsoft released the cumulative security update KB5058411 for Windows 11 24H2 and Windows Server 2025 (24H2). This has the incredible size of 4368.9 MByte. This raises the question of what makes the update package so bloated? Spoiler: It's the AI stuff that Microsoft is including in the update. Advertising Shortly after the release of the May 2025…
↧
BadSuccessor: Abusing dMSA to elevate privileges in Active Directory
[German]Delegated Managed Service Accounts (dMSAs) have been introduced in Windows Server 2025. These are service accounts for the Active Directory (AD) that are intended to enable new functions. Security researchers have now discovered that by misusing dMSAs, attackers can take over any principal in the domain. Advertising I came across this topic on May 21, 2204 via the following…
↧
Windows Server 2022/Windows 11 24H2: Out-of-Band Updates KB5061906 / KB5061977 fixes Hyper-V freezes (23./27. May 2025)
[German]Microsoft released an out-of-band update for Windows Server 2022 on May 23, 2025 to prevent the Hyper-V platform from freezing. On May 27, 2025 another out-of-band update for Windows 11 24H2 has been released to fix the same issue. Here is a brief overview what's been documented by Microsoft. Advertising On May 23, 2025, Microsoft published the Take Action: Out-of-band…
↧
Windows 10/11: Preview Updates May 27, 2025
[German]Microsoft has released optional cumulative (preview) updates for Windows 10 22H2 (KB5061979) and Windows 11 22H2-23H2 (KB5058502) on April 27, 2025. These updates contain corrections that can be tested and are then generally rolled out as fixes in the following month. Advertising It should be noted that preview updates must be manually initiated for download and installation…
↧
↧
BadSuccessor: Read up on the dMSA AD privilege increase issue
[German]Recently, security researchers have pointed out a potential vulnerability lurking in the delegated Managed Service Accounts (dMSAs) newly introduced in Windows Server 2025. By abusing dMSAs, attackers can take over any principal in the domain. A security researcher is critical of the fact that Microsoft is waiting with a patch. And a developer has created a .NET PoC that can be used to…
↧