|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
Monthly Archives: August 2023
-
Vulnerabilities everywhere
ISSUE 20.33 • 2023-08-14 PATCH WATCH
By Susan Bradley
Another month, another series of updates for seemingly everything on the Windows platform.
But this isn’t just any month. Patch Tuesday once again coincided with the week of the annual security conference, Black Hat. The Windows-based topics range from “Hacking Bing.com (and much much more) with Azure Active Directory” to a briefing titled “Defender-Pretender: When Windows Defender Updates Become a Security Risk.”
In addition, there is a talk called “Single Instruction Multiple Data Leaks in Cutting edge CPUs aka Downfall.” Better known as CVE-2022-40982, the flaw is a transient execution side-channel issue and impacts all processors based on Intel microarchitectures from Skylake through Ice Lake. Not to be left out, Apple and Android bugs have their own talks.
Read the full story in our Plus Newsletter (20.33.0, 2023-08-14).
This story also appears in our public Newsletter. -
Sadly, Windows 11 still isn’t great at multiple monitors
WINDOWS
By Josh Hendrickson
Microsoft promised that Windows 11 would finally make using multiple monitors a better experience. But for every improvement, there are still too many glitches.
In fairness, I’ll admit up front that I’m an extreme case. My multi-monitor setup may not be the most extravagant in the world; but as you can see, I have a pretty fantastic setup.
Read the full story in our Plus Newsletter (20.33.0, 2023-08-14).
-
More Microsoft Rewards tips and tricks
MICROSOFT
By Mary Branscombe
You can earn points by playing games on Xbox — even if you don’t have a Game Pass subscription — or even by learning about new games!
Last week, I looked at all the ways you can earn daily and weekly Microsoft Rewards points by using the Bing search engine and the Edge browser. But if you have access to an Xbox, you can earn significantly more points, even if you’re not a regular gamer.
The number of apps involved depends on where you live and how much you travel, because the Rewards program has become attractive enough to exploit.
Read the full story in our Plus Newsletter (20.33.0, 2023-08-14).
-
Folder Size Analyzer — What’s using up your hard drive?
FREEWARE SPOTLIGHT
By Deanna McElveen
You know what hardware-focused people don’t do? They don’t keep their computer’s software cleaned up. My husband is no exception. I’m going to show him where that hard-drive space is going.
Folder Size Analyzer by TweakNow is a great tool for finding out where the huge files and folders are hiding on your computer. As I use it on Hubby’s computer, you can follow along to find out where your own large files are.
Read the full story in our Plus Newsletter (20.33.0, 2023-08-14).
-
Are you gettng more spam in your inbox?
Recently at the office I had to go in and edit the spam settings because I got tired of all sorts of spam and email threats coming into the office.If you are on Microsoft 365 you can edit the spam levels by following this.
If you using Desktop Outlook you can also adjust the spam filters inside the Outlook application.
I’ve always been convinced that unsubscribing from something doesn’t work it just showcases to the firm that you exist.
We’re also seeing emails that clearly are doing investigation and background checking – for example an email was sent supposedly from one employee of the firm to another. So clearly they harvested information from the web site and the email information posted there.
So what about you? Are you seeing more spam?
-
Master Patch List for August 8, 2023
I’ve updated the Master Patch list for the August updates. Remember to always review the known issues we are tracking on the Master Patch List page. I will keep the latest info there.
So far trending issues are:
8/8/2023: Still in the process of testing and evaluating updates but be aware that I am seeing failures to install the Exchange server updates for Microsoft’s mail server see this post. Microsoft has pulled the update at this time.
Consumer tip: If you are on Windows 11 and have any sort of third party menu or file explorer program, ensure that it’s up to date. If the start menu won’t launch be prepared to remove it. While I haven’t seen issues in my testing, it’s still too soon to be installing updates.
Business tip: On August 8, 2023, Windows Updates for Server 2022 will add options for administrators to audit client machines that cannot utilize LDAP channel binding tokens via events on Active Directory domain controllers. (more info in the master patch list)
I am recommending at this time that you install Apple updates, I’m not recommending Windows updates at this time. I’ll have more details in the newsletter on Monday.
- Windows 11 22H2: Recommended
- Windows 11 21H2: If you have a Windows 11 PC and are a gamer, recommended
- Windows 10 22H2: Recommended
- Apple Ventura – Recommended for newer hardware – as always check with the applications you rely on if they recommend this release.
As always, thank you all for supporting the cause! Remember a donation will give you access and if you donate $50 or more you’ll get a special code to enable text messages sent to your phone each time the Master Patch List gets updated and when I change the MS-DEFCON level.
-
Exchange patchers – August heads up
Still in the process of testing and evaluating updates but be aware that I am seeing failures to install the Exchange updates potentially on German language servers — unsure if it’s other languages see the comments in this post.Normally I would be urging you to patch Exchange mail server (Microsoft’s email server) updates as soon as possible but I’m seeing patching admins indicate that on some machines it’s failing to install the patch. Note that when Exchange fails to properly install it will often turn the services off completely and then fail to turn them back on. Bottom line don’t panic, just go into your Exchange server and turn the services manually back on. Chances are it will recover.
Note it MAY be that this just impacts German language servers. Note that it is impacting all non English versions of Exchange.Seeing indications in the blog that it may be that locale only? But given the time zones they may be the ones patching and those of us in North America are still testing. Bottom line, be aware of potential installation issues. You may want to hold back a bit and see what happens.More on this in the Newsletter on Monday. I will also keep the Master Patch List page up to date on the latest. In the meantime I would keep an eye on the Exchange blog site.
-
What’s up with the August office updates
Did I miss a month in the calendar?I thought Office 2013 was no longer under support as of April. Not August but A-P-R-I-L.
OH I see what they are doing…. it’s a “defense in depth” patch which is shorthand for saying that we clearly still see that a lot of you are using Office 2013 so we’d better fix it so it’s not used in more attacks.
Proving once again that bugs will always be with us. Once again more full analysis of what the risks are coming in the newsletter.
Microsoft Office 2013
-
August 2023 updates are out
For Apple devices, while 16.6 was released back on July 24, your device may not have received them yet – or will be installing it shortly. As always, if you see any weirdness try turning the device off and then back on again.August is BlackHat and Defcon – the big security conferences held in Las Vegas and this month is a BIG release for security patches as well.
We STILL do not have a patch for all affected version of Office/wordpad for last month’s security vulnerability in Office/html (if you remember it was patched in the M365 versions but not all) instead we have an advisory.
Exchange mail servers have a patch.
.NET’s have security updates.
More in next weeks newsletters. For now I start testing on my canary machines and you – you just hang tight and defer those updates.
-
Make the most of Microsoft Rewards
ISSUE 20.32 • 2023-08-07 MICROSOFT
By Mary Branscombe
Microsoft will give you points for using Bing, and more!
Welcome to this first of a two-part series on how to earn rewards points, where to spend or donate them, and how to maximize your earnings.
You can view the Rewards program as a bit of a bribe to use Microsoft’s search engine and browser, or you can see it as getting your share of the advertising money Microsoft earns on Bing and MSN. Every search engine makes money, but only Microsoft shares it with users through what’s now called Microsoft Rewards.
Read the full story in our Plus Newsletter (20.32.0, 2023-08-07).
This story also appears in our public Newsletter. -
How can an e-cigarette know the age of its user?
PUBLIC DEFENDER
By Brian Livingston
The dominant e-cigarette manufacturer Juul filed in the US last month an application to sell a new technology that requires age verification and prevents the use of third-party, candy-flavored vaping cartridges.
Juul nearly went bankrupt in November 2022 after agreeing to a $439 million settlement with several US states. The attorneys general of those states successfully argued that the company had marketed fruity flavors specifically to appeal to minors.
Read the full story in our Plus Newsletter (20.32.0, 2023-08-07).
-
What the &$@!*& is Microsoft Loop?
MICROSOFT 365
By Peter Deegan
Should you care?
Microsoft Loop is a new way to collaborate online. A Loop component could pop up in an email, chat, or Word document. I’ll explain what they are and how to work with one, so you’ll know what to do when Loop appears on your screen.
As usual, there’s a lot of Microsoft hype about Loop.
Read the full story in our Plus Newsletter (20.32.0, 2023-08-07).
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Topic: Privacy Report on Modern Cars
by 1 hour, 11 minutes ago
-
Microsoft’s massive Windows 11 update, featuring Copilot AI, begins rolling out
by 2 hours, 8 minutes ago
-
MailStore Home updates
by 15 hours, 53 minutes ago
-
T-Mobile users say they see other people’s account information
by 1 day, 3 hours ago
-
Retirement of Exchange Web Services in Exchange Online
by 1 day, 15 hours ago
-
What Remote Desktop credentials do I use to access a MS Account computer
by 4 hours, 37 minutes ago
-
Office 2003 Compatibility with One Drive in Windows 11
by 2 days, 2 hours ago
-
Has KB5030219 been pulled for Windows 11 Pro for Workstations?
by 4 hours, 52 minutes ago
-
By default encryption on Apple
by 1 day, 19 hours ago
-
KB5029331 Macrium/Reflect
by 1 day, 21 hours ago
-
Windows 10 Build 19045.3513 (22H2) to Release Preview Channel
by 2 days, 8 hours ago
-
Microsoft worker accidentally exposes 38TB of sensitive data in GitHub blunder
by 1 day, 17 hours ago
-
Change CPU/Mainboard without reinstallation of OS and Apps – Win10
by 1 day, 22 hours ago
-
Mouse slows to crawl if Edge in focus
by 3 days, 3 hours ago
-
Windows and Surface chief Panos Panay is leaving Microsoft
by 2 days, 17 hours ago
-
Essential Office Portable
by 3 days, 5 hours ago
-
Essential Office: Disable Spell Check
by 3 days, 5 hours ago
-
Apple 2030
by 1 day, 3 hours ago
-
Wi-Fi 7? Why not!
by 2 hours, 45 minutes ago
-
Second city — the AI view from Washington
by 3 days, 14 hours ago
-
Zeroing in on zero days
by 1 day, 23 hours ago
-
LMDE – Software Update
by 1 day, 4 hours ago
-
MacAfee anti virus left overs
by 23 hours, 23 minutes ago
-
Google issues update for Chrome 109 (Win 7 – Server 2012r2) that fixes WebP
by 4 hours, 9 minutes ago
-
Microsoft apparently canning P2P Win32 services on Windows 11 23H2, Windows 12
by 31 minutes ago
-
Inserting from clipboard into posting
by 3 days, 23 hours ago
-
Background picture not invoked @ startup
by 2 days, 2 hours ago
-
download Linux Mint most recent
by 4 days, 7 hours ago
-
Modify email account settings
by 4 days, 15 hours ago
-
Microsoft’s Edge 109 updates for Windows 7 , 8, 8.1, 2012 R2 ! webP fix
by 5 days, 4 hours ago
