Posts

Share tech news, updates, or what's on your mind.

Sign up to Post

https://docs.microsoft.com/en-us/answers/questions/92345/gpmc-error-for-34security-options34-after-updates.html

There is a bug in the september cumulative (security-) update for windows server 2016 1607 that cripples the ability to pre-set security options using GPOs. Microsoft is aware of the problem and there are two workarounds mentioned.
0
Updated roadmap from Microsoft on Microsoft Access:

https://www.microsoft.com/en-us/microsoft-365/roadmap

Enter "Microsoft Access" in the search bar to get the ones specific to Access along with checking "Access" under the product filters off on the left.

It's also been noted that they will do a better job of keeping this updated moving forward, so it's something you'll want to pin.
0
0
https://www.secura.com/pathtoimg.php?id=2055
For all those admins who think immediate patching doesn't matter: without installing the August (or September) 2020 updates on your machines, any malicious insider or someone who simply plugged in a device to an on-premise network port can immediately take over the whole network.

Too bad: the problem was patched in August, the attack script was available (for people in the know) in its current form since February, maybe even much earlier.
1
Turn Windows 10 into an XP or MAC Look-a-Like

I found this article amusing and intend to play with some of these themes in a Win 10 VM. Strikes me as an excellent way to confuse the hell out of scammers if you're into Scam baiting too :)

https://www.makeuseof.com/tag/windows-10-themes-desktop/
0
0
0
unable to ping internet from vlan1 but can from console of router
0
SMB retailers adapting to retail solutions for seamless expansion into eCommerce amid Covid-19

https://dashnex.com/blog/smb-retailers-adapting-to-retail-solutions-for-seamless-expansion-into-ecommerce-amid-covid-19/
0
0
0
Enabling the integration of SharePoint within Dynamics 365 gets the documents you currently have in Microsoft Dynamics 365 moved to Microsoft SharePoint, It is the best way I know of saving money on Dynamics storage, and having the documents in SharePoint is actually a plus. Check out the video I just made on how to enable it https://www.youtube.com/watch?v=ABpHzvcEc-A
0
Key makers now able to duplicate keys just by recording the sound of inserting the key in the lock.
https://kottke.org/20/08/researchers-can-duplicate-keys-from-the-sounds-they-make-in-locks
0
The online grocery market in Nordic countries is currently in the midst of seismic change due to the COVID-19 pandemic. In the hunt for daily-use items, people across Nordics have turned to online shopping, skyrocketing the adoption rate of grocery delivery services

https://www.fatbit.com/fab/ecommerce-grocery-business-in-nordic-countries/
0
Attention, this is a warning you admins should take seriously: there is exploit code available for windows 10 that allows a local user to elevate to admin... so far nothing new, we have that almost every month. Only that this time, Microsoft will not be able to patch it unless you actively co-operate.

If you use WSUS or configmgr to deploy windows 10 feature upgrades (ANY version up to 20H1), you will HAVE TO decline those packages on WSUS/configmgr and sync the latest (patched) feature update bundles and approve those for deployment. Also make sure that no setups linger at your clients in a "downloaded, ready to install" state.

What the old, unpatched setups do: they allow attackers to create a fake temporary setup folder and place scripts within that get executed by the update service (=system) account. The same holds of course true for any ISOs that you might have downloaded before August 11th, 2020 - delete them and re-download them.
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1571 assesses this as "Exploitation Less Likely" and "not exploited", but I saw videos of people demonstrating how to exploit it.
1
D365-Storage.png For those who are struggling with Dynamics 365 attachments taking up too much storage and wondering if there is some way to use Azure to solve it, here is an article by my friend Anastasia Mazur that I am sure will help
 https://www.connecting-software.com/blog/reduce-dynamics-365-storage-costs-automatically-move-attachments/
0
Apache Spark
https://spark.apache.org/

Is this something new to you? At least to me, it is!

Share with me, your experience you have implementing it in real use cases?
0
Real life IT Security!

https://news.synopsys.com/2020-08-06-DevSecOps-Study-Finds-that-Nearly-Half-of-Organizations-Consciously-Deploy-Vulnerable-Applications-Due-to-Time-Pressures
...nearly half of organizations consciously push vulnerable code on a regular basis...
--
https://www.ibm.com/downloads/cas/VR9E8AKM
The study revealed that the number of security solutions and technologies an organization used had an adverse effect on its ability to detect, prevent, contain and respond to a cybersecurity incident.
0
For form's attribute tagging, do you need it?

Tag-it: a jQuery UI plugin
https://github.com/aehlke/tag-it/blob/master/README.markdown

We also could compare it with Select2 plugin (with multiple-select effect) below:
https://select2.org/getting-started/basic-usage
0
https://thehackernews.com/2020/08/foreshadow-processor-vulnerability.html

"It turns out that the root cause behind several previously disclosed speculative execution attacks against modern processors, such as Meltdown and Foreshadow, was misattributed to 'prefetching effect,' resulting in hardware vendors releasing incomplete mitigations and countermeasures"
Great! Patched=unpatched for years...

Even more: "The speculative dereferencing issue — in certain attacks like Rowhammer, cache attacks, and DRAMA — could let attackers recover the physical addresses of JavaScript variables and exfiltrate information via transient execution remotely via a web browser."
So maybe after all, these attacks are not that "less likely to succeed" as classified before? :-(
0
Anyone know if there is a way to view who has been nominated for the current MVE award nominations, and how many times? Is that info publicly available?
0
LVL 67

Expert Comment

by:Ryan Chong
Hi Andrew, I don't think it's publicly available.
1
Troubleshooting slowness of your queries in SQL Server?

Why Is My SQL Server Query Running So Slowly?
https://www.ptr.co.uk/blog/why-my-sql-server-query-running-so-slowly

How to identify slow running queries in SQL Server
https://www.sqlshack.com/how-to-identify-slow-running-queries-in-sql-server/
0
How top eCommerce Brands are resuming operations amid COVID-19? Their strategies to deal with the pandemic may serve as a blueprint for small/medium-sized businesses to follow: https://www.yo-kart.com/blog/how-top-ecommerce-marketplaces-are-resuming-operations-amid-covid-19/
0
An Excerpt from my last write up at Experts Exchange on Conflict Resolution.

embed=file 1482883]
Conflict-Resolution---Muneeb-Imran-S.png
0
Garmin services are offline in the aftermath of a ransomware attack.
We'll see what they say, but in my own experience, to prevent the problem from spreading, they may have just disconnected themselves from the internet while they get everything under control.
https://www.zdnet.com/article/garmin-services-and-production-go-down-after-ransomware-attack/
1

Keep in touch with Experts Exchange

Tech news and trends delivered to your inbox every month