Updates 2021-09-14

Welcome back, Folks!

This is for Patch Tuesday for September, 2021.

I’m running late with the newsletter this month. I needed to focus on our clients since there was simply so much to do. In the typical month we usually see 85-90 updated applications (some several times). This month there have been over 160. An increase in application release frequency is typical when other major software releases are impending, and the next month will bring Windows 11, iOS 15, a new build of Windows 10, a new version of Microsoft Office, iPhone 13, and Windows Server 2022.

This Month in Technology

AccentureApple devices, and Apple iCloudAT&T (more than once), various airline and IAB staffBangkok AirwaysBanksyBeaumont HealthBlackbaud (more information about a previous hack), Boston Public LibraryBrooklyn Technical High SchoolCampbell Conroy & O’Neil, P.C., Chase Bank, thousands of Coinbase accountsComcast/Xfinity remotes29% increase in attacks targeting the education sector, Cream FinanceDallas Police DepartmentDallas School DistrictDesert Wells Family MedicineDuPage Medical GroupEpikEskyFunFordForHousing and Liberty, over 80,000 Fortinet FortiGate VPN devices, Fortinet FortiWebFortress Home Security, the French Visa ProgramGuntrader (including data of over 100,000 UK gunowners), Howard UniversityHP Omen HubIndiana Department of Health (Contact Tracing System), ImavexEvin (Iranian Prison), JenkinsJohn Deere, JP Morgan Chase, over 1,200 K-12 schoolsKaseya UnitrendsLithuanian Ministry of Foreign AffairsMarketron60,000 domains with MarkMonitorMcDonald’sMemorial Health SystemMicrosoft Power Apps (38 million records!), MikroTik routersMyRepublicNEW Cooperative, a NY Credit UnionOlympusParallels DesktopPeterborough, New HampshireRazer mouse driver (and pretty much all other drivers), Republican Governors AssociationRevere HealthSAC WirelessSonic, various NAS drivesPayPal is sharing user data and transactions with the ADL, pNetworkRazorPayvarious routers from over a dozen vendors, various Russian phonesSouth Africa’s Department of JusticeSpotify data leak, Syracuse UniversityT-MobileTexas GOPTokio Marine, the United NationsUPS, the US Census, the US State Department, hundreds of US financial systems, almost half of all US hospitals, dozens of US government websites, the US Terrorist Screening CenterValveWalgreens, the WordPress Gutenberg Template Library Plugin, and Zoho ManageEngine have been hacked this month.

I separated the Microsoft-specific hacks this month mostly to shame them. The month they claim that “the cloud” is more secure they should absolutely have their noses rubbed in it. Microsoft suffered from yet another nasty, epic, world-wide Exchange attack, but defended their own hosted product by claiming “Microsoft’s Office 365 wasn’t swept up in the breach because it runs in the cloud, which offers more protection,” even though only hours later a critical vulnerability in Microsoft’s Azure Cosmos DB service was confirmed — one of the largest cloud hacks of all time, affecting thousands of service providers. The vulnerability existed for months, so there’s simply no way to know if your accounts were compromised or if permanent access to any victim’s Microsoft Azure services occurred months prior, and Microsoft patched it only two weeks before making the claim above that “the cloud…offers more protection.” As if hammering the point home, yet another series of vulnerabilities in Microsoft’s Azure cloud services were discovered this week which expose millions more endpoints, with thousands already infected. Microsoft’s 365 Cloud PCIIS, Microsoft Teams event data, WSL, and MSHTML used by Microsoft Office have all been hacked this month. Microsoft’s PrintNightmare still isn’t over. In fact, the “fix” breaks printing and printer installation on at least 5% of computers. To top it all off, with all of these incidents they are removing features and they still feel their software is worth a 20% price increase based on the improved security and reliability of their products. Sigh.

The Ragnarok ransomware gang has released a master decryption key. So has REvil (accidentally).

The US Senate is working to make encryption meaningless. Facebook is, too. And Facebook just got slapped by the German Supreme Court for violating free speech rights in Germany. Hypocrisy is their codeword. Facebook actually hid their transparency report. That kinda says it all, doesn’t it? If not, then Apple “considering” removing Facebook for their ties to human trafficking should at least raise an eyebrow. Really, the question should be, why didn’t they? Google geofence warrants are up 1,167%.

Anyone can post a job for any company on LinkedIn. A new fake Captcha tricks the user into keeping malware. ProtonMail, once a beacon of hope for privacy advocates, has shared IP addresses and device information of a user in violation of their own privacy assertions.

Dogfooding is usually a good thing. Not always.

On hardware – GPU-level malware is a thing. Hacking strict hardware security through a silly design flaw. ASUS has made a few serious mistakes with their $2,000 GeForce RTX graphics cards. If you ever wondered why you shouldn’t borrow someone’s charging cable or wall wart, wonder no more. Samsung has acknowledged that they can disable any Samsung TV using a “feature” (read: backdoor) installed on all their televisions. Do you think they limited this “feature” to their TVs?

Apple is still pushing their Jedi Mind Tricks. They want you to use your phone as your ID, but a recent iOS update even broke the “phone” part of iPhones. Why would anyone trust their identity to their phones?

The Epic v Apple case finally has a ruling. One of the two most significant issues, that Apple forbade any payments not through the App Store, was (rightly) ruled illegal. All other counts were dismissed. It’s being appealed, of course. This could cost Apple a huge chunk of a $20+ billion pie. There are some great reads from discovery. South Korea has passed a new law with similar implicationsEpic v Google is really shaping up.

Be careful how you treat your employees – they might turn out to be the “evil insider” for a ransomware gang.

If you’re a government employee and the scope of your abuse was just to use your boss’s computer then you’re really thinking small potatoes.

Oh, and don’t photograph the moon. You might get sued by UMG.

All technology carries risk, but Wi-Fi is probably the most significant risk to your privacy.

Microsoft broke OneDrive for Business, has some major issues with Outlook 365 right now, and VoIP.ms has been extorted by a DDoS attack.

Apple has dropped it’s lawsuit against Corellium over virtual iPhones, lost their Optis trial, and settled with small developers who publish on the App Store, but it still in bed with Big Brother. The US is pushing a bill right now to prevent App Stores from being the sole source of apps and content for their platforms and the EU is pushing for a minimum of seven years of hardware support.

There is no Section 230 in Australia…and it shows. Until social media companies are slapped by the Supreme Court, they will continue to get away with acting on behalf of government while claiming to be independent.

Since nobody is working “full time” anyway, they’re planning to force employers to cut their hours even more.

A federal court has ruled that the HHS can not force doctors to perform transgender surgeries or abortions. If you were concerned about the damage someone might do to your wedding cake, why would you want them holding a scalpel between your legs?

When the MSM has to resort to blatant lies to support their position and the people eat it up you have to acknowledge that they’re the enemy of honesty. The only real pandemic is a curious series of deaths only affecting those leaders opposed to mandates and ignoring the blatantly obvious data. This isn’t the first time. Sadly, absolute fraud passes for science today. There really are proven treatments available.

The science behind face masks demonstrates that this has never been an honest conversation. Instead, politicized (and ineffective) tests and treatments are more lethal
than the disease. Those required to do so are failing or simply refusing to report injuries (does this mean they lose protection under NVICP?) and the events that are reported still resemble a certain climate change “hockey stick.” They’re maliciously and negligently ignoring the dataactual health and safety concernscommitting fraud, and cherry-picking sources so they can make tiktok videos. They’re intentionally falsifying data to coerce and terrorize the publicGeorge Orwell would be proud. The spews media, and by extension, their loyal vidiots, aren’t interested in the truth. They mindlessly supportJab Crow,” racism, rape, tyranny, dehumanizing people, and sweep the scandals under the rug with their massive propaganda machine.

If they were honest and their goals were actually in line with reality, then isolation and replication would be required *before* the creation of a cure, but they’re still pushing tests that can’t distinguish Coronavirus from Influenza. The “vaccines” intentionally, permanently alter your DNA. Claims of effectiveness have repeatedly been disproven, as have their false claims of FDA licenseapproval.” So they push illegal mandates that aren’t intended to protect your health, even going so far as to ban students from online classesPoliticians ignoring mathematics isn’t really anything new. Especially when there’s animportantagendaIt’s time for a human rights commission for war crimes over this bio weapon. After all, more servicemembers have died from the vaccines than the disease.

The anti-privacy passports are not designed to prove you’re immune. They’re not designed to prove you’re not a carrier.

Whether there’s sufficient evidence to determine the cause of any deaths over the last 18 months, one thing is sure: Science no longer has any validity.

At least some regions are waking up to the insanity of a group of super-governmental multi-national corporations with total immunity from any and all liability. Or elseIt’s time to opt out.

The FBI admits no one (else!) orchestrated the Jan 6 protest. Nevertheless, it was, according to “experts,” the darkest day in American history. (And they don’t mean the subsequent human rights violations.) Odd that the same agenda is unfolding through Big Pharma.

A real President doesn’t abandon their people, or commit war crimes when they’re embarrassed, the Speaker shouldn’t be silencing the names of those who died on their watch, and the FCC, the FDA, OSHA, and other government agencies should actually study what they approve. Companies that only answer to consumers do.

Only after the last year of humans treating other humans as trash, and validating it by dumbing down the rest, could a flight attendant say, matter-of-factly, that “we don’t follow federal law” and expect her victim to just roll over and comply.

It makes perfect sense, then, that the Constitution and Declaration of Independence would be labeled “harmful content” by the National Archives. Not to be outdone, the UK – once the standard to measure an open press – will now punish reporters who “embarrass” the government with up to 14 years in prison.

Now for the good news:

Inexpensive batteries are on the horizon and Starlink satellites are being fitted with lasers.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday this month is huge. The typical computer should see roughly 3.5 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Edge, .NET, Servicing Stack, Internet Explorer, and MSRT (~2.5 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 15 and 14.8, iPadOS 15 and 14.8, tvOS 15, macOS Big Sur 11.6, watchOS 8 and 7.6.2, Safari 15, Safari 14.1.2, Xcode 13, iTunes 12.12 for Windows and Security Update 2021-005 Catalina. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 15 and 14.8 are security updates. Use Settings, General, Software Update to install the most current update.

iPadOS 15 and 14.8 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 8 and 7.6.2 are security updates. Use the Watch app on your iPhone to install the most current version.

tvOS 15 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 93.0.4577.63 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Big Sur (11.x) means that macOS High Sierra (10.13) and older are no longer supported. If you can not install at least macOS Mojave (10.14) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H1) is very large, for the first time it’s actually smaller than the previous release, but it will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 6 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Citizen Driver 2021.1 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.seagullscientific.com/support/downloads/drivers/citizen/download/

Display Driver Uninstaller 18.0.4.3 improves removal. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

HP Laserjet Stub 13.3.3 doesn’t provide a changelog so should be treated as a security update.
https://123.hp.com/us/en/devices/LASERJET

Nvidia 472.12 adds support for Windows 11, CUDA 11.4, and resolves several bugs. This is a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.29.81 adds more advertising, improves IPFS support, resolves several crashes and other bugs. This is not a security update.
https://brave.com/

Google Chrome 94.0.4606.54 is a security update.
https://www.google.com/chrome/

Microsoft Edge 93.0.961.52 is a security update.
https://www.microsoft.com/en-us/edge/business/download

Firefox 92.0 is a security update.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 78.14.0 is a security update.
https://www.mozilla.org/en-US/firefox/organizations/all/

Vivaldi 4.2.2406.48 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.9.2 resolves several bugs. This is not a security update.
https://getmailspring.com/

Thunderbird 91.1.1 is a security update.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

Skype 8.75.0.140 resolves several bugs. This is not a security update.
https://www.skype.com/

Telegram 3.1.0 resolves several bugs. This is not a security update.
https://telegram.org/

Trillian 6.5.0.17 updates libraries and resolves upload bug. This is not a security update.
https://www.trillian.im/

AnyDesk 6.3.3 improves connection reliability. This is not a security update.
https://anydesk.com/en/downloads

AnyDesk (macOS) 6.3.2 adds a URL handler and adds a warning for permissions. This is not a security update.
https://anydesk.com/en/downloads

aria2 1.36.0 updates libraries and resolves several bugs. This is not a security update.
https://aria2.github.io/

BrowsingHistoryView 2.50 improves menu sorting behavior. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

curl 7.79.0 is a security update.
https://curl.haxx.se/windows/

DNSDataView 1.61 resolves an international compatibility bug. This is not a security update.
https://www.nirsoft.net/utils/dns_records_viewer.html

Dropbox 130.4.4978 doesn’t provide a changelog, so should be treated as a security update.
https://www.dropbox.com/

FileZilla Server 1.0.1 (wow! I honestly thought they’d never release a major version) adds ACME Let’s Encrypt support, logging improvements, library updates and resolves several bugs. This is not a security update.
https://filezilla-project.org/

FreeFileSync 11.14 adds OpenSSL 3.0 support, resolves several bugs, adds ability to manage filter settings, and improves cross-platform compatibility. This is not a security update.
https://www.freefilesync.org/download.php

Google Drive 51.0 improves reliability and stability. This is not a security update.
https://drive.google.com/start

Npcap 1.55 resolves several bugs. This is not a security update.
https://nmap.org/npcap/

Omada Software Controller 4.4.4 resolves several bugs. This is not a security update.
https://www.tp-link.com/us/support/download/omada-software-controller/

Rclone 1.56.1 improves reliability and resolves several bugs. This is not a security update.
https://rclone.org/

Technitium DNS Server 6.4.1 resolves several bugs. This is not a security update.
https://technitium.com/dns/

Zoom 5.7.8.1247 resolves several bugs. This is not a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

darktable 3.6.1 improves hardware support and resolves over a dozen bugs. This is not a security update.
https://www.darktable.org/install/

Flickr Downloadr 3.4.3.1 updates libraries. This is not a security update.
https://flickrdownloadr.com/downloads/

iTunes 12.12.0.6 is a security update. Use Apple Software Update to install the most current version.
https://www.apple.com/itunes/download/

MediaMonkey 5.0.3 resolves a duplication bug. This is not a security update.
https://www.mediamonkey.com/windows#download

Plex Home Theater 1.5.1.2629 updates libraries, improves hardware support, and resolves several bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-app

Plex Media Server 1.24.3.5033 adds support for new hardware, updates libraries, resolves stability and reliability bugs. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Steam 2021.09.20 resolves dozens of bugs. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Nintendo Switch 13.0.0 adds Bluetooth Audio, the ability to install Dock updates, and preserve the Internet connection in sleep mode. This is not a security update.
https://en-americas-support.nintendo.com/app/answers/detail/a_id/22525/kw/system%20updates/p/989

PlayStation PS5 21.02-04.00.00 adds M.2 SSD expansion support, 3D audio, and resolves several bugs. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Office Updates

One or more of these are likely to be of interest to most people.

Audacity 3.0.4 resolves a stability bug. This is not a security update.
https://www.audacityteam.org/download/

Blender 2.93.4 resolves dozens of bugs. This is not a security update.
https://www.blender.org/download/

Gimp 2.10.28 is a major update ported to GEGL, adds multithreading, GPU-side processing, hi-DPI support, and improved user interface, selection tools and more. This is not a security update.
https://www.gimp.org/

IcoFX 3.6.1 resolves a startup bug. This is not a security update.
https://icofx.ro/

Krita 4.4.8 resolves several bugs. This is not a security update.
https://krita.org/en/download/krita-desktop/

LibreOffice Fresh 7.2.1 resolves over 400 bugs. This is a security update. The “Fresh” line is beta software, and should be avoided in favor of the “Still” version for most users.
https://www.libreoffice.org/

LibreOffice Still 7.1.6 resolves 44 bugs. This is not a security update.
https://www.libreoffice.org/

Nextcloud Desktop 3.3.4 resolves several bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.1.4 resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

Adobe XMP Toolkit SDK 2021.08 is a security update.
https://helpx.adobe.com/security/products/xmpcore/apsb21-85.html

Adobe Photoshop 21.2.12 and 22.5.1 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb21-84.html

Adobe Experience Manager 6.5.10.0 is a security update.
https://helpx.adobe.com/security/products/experience-manager/apsb21-82.html

Adobe Genuine Service 7.4 is a security update.
https://helpx.adobe.com/security/products/integrity_service/apsb21-81.html

Adobe Digital Editions 4.5.11.187658 is a security update.
https://helpx.adobe.com/security/products/Digital-Editions/apsb21-80.html

Adobe Premiere Elements 20210809.daily.2242976 is a security update.
https://helpx.adobe.com/security/products/premiere_elements/apsb21-78.html

Adobe Photoshop Elements 20210811.m.158081 is a security update.
https://helpx.adobe.com/security/products/photoshop_elements/apsb21-77.html

AdobeCreative Cloud Desktop Application 5.5 is a security update.
https://helpx.adobe.com/security/products/creative-cloud/apsb21-76.html

Adobe ColdFusion 2018.12 and 2021.2 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb21-75.html

Adobe Framemaker 2019.8 and 2020.3 are security updates.
https://helpx.adobe.com/security/products/framemaker/apsb21-74.html

Adobe InDesign 16.4 is a security update.
https://helpx.adobe.com/security/products/indesign/apsb21-73.html

Adobe SVG-Native-Viewer 20210914 is a security update.
https://helpx.adobe.com/security/products/svg-native-viewer/apsb21-72.html

Adobe InCopy 16.4 is a security update.
https://helpx.adobe.com/security/products/incopy/apsb21-71.html

Adobe Premiere Pro 15.4.1 is a security update.
https://helpx.adobe.com/security/products/premiere_pro/apsb21-67.html

Adobe Acrobat and Reader 2021.007.20091, 2020.004.30015, and 2017.011.30202 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb21-55.html

Security Software Updates

One or more of these is likely to be of interest to most people.

Tails 4.22 resolves several stability bugs with Tor. This is a security update.
https://tails.boum.org/install/dvd-download/index.en.html

BelArc Advisor 11.1 adds support for new software and operating systems. This is not a security update.
https://www.belarc.com/products_belarc_advisor

Hashcat 6.2.4 improves performance, adds hash modes, and resolves several bugs. This is not a security update.
http://hashcat.net/hashcat/#downloadlatest

KeePass 2.49 improves accessibility, reliability, and resolves several bugs. This is not a security update.
https://keepass.info/

OnionShare 2.3.3 adds dark mode, updates libraries, and resolves several bugs. This is not a security update.
https://onionshare.org/

OpenSSL 1.1.1l and 3.0.0 are security updates.
https://curl.se/windows/
https://slproweb.com/products/Win32OpenSSL.html

RogueKiller 15.1.0 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

uBlock Origin 1.38.0 adds Node.js support and resolves several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

WebBrowserPassView 2.11 adds a new export/import option, Firefox CSV. This is not a security update.
https://www.nirsoft.net/utils/web_browser_password.html

Capture Updates

These are unlikely to be of interest to most people.

Elgato Game Capture HD 3.70.55 adds Facecam support and resolves several bugs. This is not a security update.
https://www.elgato.com/en/game-capture-software

SnagIt 2021.4.4 resolves several bugs. This is a security update.
https://download.techsmith.com/snagit/enu/snagit.exe

Converter Updates

These are unlikely to be of interest to most people.

HandBrake 1.4.1 resolves several bugs. This is not a security update.
https://handbrake.fr/

PDF Creator 4.4 resolves several bugs, adds CS Script action, page numbers, and a couple more actions. This is not a security update.
https://www.pdfforge.org/pdfcreator

Education updates

One or more of these are likely to be of interest to most people.

Zotero 5.0.96.3 resolves several bugs. This is not a security update.
https://www.zotero.org/

Utility Updates

These are unlikely to be of interest to most people.

1Password for Mac 7.8.7 resolves dozens of bugs and compatibility issues. This is not a security update.
https://1password.com/downloads/mac/

Autoruns 14.01 resolves a bug with VirusTotal and adds a dark theme. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns

Beyond Compare 4.4.0.25886 adds support for TLS 1.3, improves SFTP and resolves several bugs. This should be treated as a security update.
https://www.scootersoftware.com/download.php?zz=dl4

Bitwarden 1.28.2 resolves several bugs. This is not a security update.
https://bitwarden.com/

CPU-Z Installer 1.97 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

DesktopOK 9.21 improves support for Windows 11 and resolves bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

dnGrep 2.9.378.0 adds several new features and resolves several bugs. This is a security update.
https://dngrep.github.io/

Drive Snapshot 1.49 adds support for new operating systems and improves encryption. This should be treated as a security update.
http://www.drivesnapshot.de/en/

Etcher 1.5.122 resolves several bugs. This is not a security update.
https://www.balena.io/etcher/

Everything Toolbar 0.7.2 resolves a display bug. This is not a security update.
https://github.com/stnkl/EverythingToolbar/

Fido 1.24 adds UEFI Shell downloads and command line support. This is not a security update.
https://github.com/pbatard/Fido/releases

GoodSync 11.8.2 resolves several bugs. This is not a security update.
https://www.goodsync.com/

LessMSI 1.8.2 resolves a CAB parsing bug. This is not a security update.
https://lessmsi.activescott.com/

NTLite 2.3.0.8330 adds support for Windows 11 and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

osquery 5.0.1 adds several new tables and queries, updates libraries and resolves several bugs. This is not a security update.
https://osquery.io/downloads

PowerToys 0.45.0 improves stability and resolves dozens of bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

Process Monitor 3.84 adds dark theme. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

Process Explorer 16.43 resolves a memory leak and other bugs. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/process-explorer

Synergy 1.14.1 resolves several bugs, improves reliability and adds new operating system support. This is not a security update.
https://symless.com/synergy/

Sysmon 13.24 improves stability and event handling. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

TCPView 4.14 adds dark theme. This is not a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/tcpview

TeamViewer 15.21.8 resolves a license warning bug. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

WhyNotWin11 2.4.1 improves compatibility detection. This is not a security update.
https://github.com/rcmaehl/WhyNotWin11

WifiChannelMonitor 1.70 adds 802.11ac monitoring mode. This is not a security update.
https://www.nirsoft.net/utils/wifi_channel_monitor.html

WifiInfoView 2.71 improves internationalization. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

Windows 11 RCT 1.1.0 improves compatibility detection. This is not a security update.
https://bytejams.com/

WinScan2PDF 7.31 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 4.03 is a massive update. This version adds zoom, improved search controls and organization, Explorer interaction and improved cosmetic controls. This is not a security update.
https://wiztreefree.com/

Developer Updates

These are unlikely to be of interest to most people.

AutoHotkey 1.1.33.10 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

Godot 3.3.3 resolves dozens of bugs. This is not a security update.
https://godotengine.org/

Node.js v12 12.22.6 is a security update.
https://nodejs.org/en/

Node.js v14 14.17.6 is a security update.
https://nodejs.org/en/

Node.js v16 16.9.1 updates libraries, resolves several bugs, and improves error handling. This is a security update.
https://nodejs.org/en/

Unreal Engine 4.27 resolves several bugs. This is not a security update.
https://unrealengine.com/en-US/

Visual Studio Code 1.60 adds debug watch values, improves cosmetics, and resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Web Package Updates

These are likely to be of interest only to web developers.

OpenCart 3.0.3.8 resolves an RTL bug. This is not a security update.
https://www.opencart.com/

Coppermine Gallery 1.6.13 is a security update.
https://coppermine-gallery.net/

Dada Mail 11.15.1 updates libraries and resolves several bugs. This is a security update.
https://dadamailproject.com/

Docker Desktop 4.0.1 introduces the new licensing scheme, updates libraries, and resolves several bugs. This is not a security update.
https://www.docker.com/products/docker-desktop

Drupal 9.1.13 is a security update (the second in a week).
https://drupal.org/download

Drupal 9.2.5 resolves dozens of bugs. This is not a security update.
https://drupal.org/download

MailArchiva 8.2.4 resolves several bugs. This is not a security update.
https://mailarchiva.com/

MailEnable 10.36 resolves several bugs, including a certificate assignment bug. This is not a security update.
https://www.mailenable.com/

Nextcloud Server 22.1.1 updates libraries and resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

ownCloud Client 2.9.0.5150 resolves several bugs and improves stability. This is not a security update.
https://owncloud.com/desktop-app/

ScreenConnect 21.12.4575.7914 adds several controls for compatibility and reporting, improves stability, and resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

YOURLS 1.8.2 resolves several bugs. This is a security update.
https://yourls.org/

WordPress 5.8.1 is a security update.
https://wordpress.org/

Akismet 4.1.12 resolves a couple bugs. This is not a security update.

Autoptimize 2.9.2 improves compatibility and resolves several bugs. This is not a security update.

BuddyPress 9.1.1 is a security update.

Duplicator 1.4.3 resolves several bugs. This is not a security update.

Postie 1.9.57 improves attachment handling. This is not a security update.

Show IDs 1.1.8 adds support for the latest WordPress. This is not a security update.

Slider Revolution 6.5.8 resolves several bugs. This is not a security update.
https://revolution.themepunch.com/

Social Post Feed 4.0 is a major update adding several new features. This is not a security update.

Sucuri Security 1.8.28 removes a warning. This is not a security update.

Visual Composer 38.1 resolves a couple bugs. This is not a security update.
https://visualcomposer.com/

W3 Total Cache 2.1.8 resolves several bugs. This is not a security update.

WooCommerce 5.7.0 resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2021-08-10

Welcome back, Folks!

Today is Patch Tuesday for August, 2021. It’s a big one. There have been a series of Apple, Microsoft, and various hardware vulnerabilities, as well as the quarterly Oracle updates that kept the industry hopping. Couple that with Black Hat 2021 last week, which kept reminding us how poorly those who design our technology have done and continue to do.

This Month in Technology

Apple devices via Pegasus, IOMobileFrameBuffer, and Wi-Fi namesAtlassianCharming Kitten (hacking group), Cloudstar, cdnjs, FortiNet FortiManager and FortiAnalyzer, HP (and Samsung and Xerox) printer driver, Illinois State Police, Linux via SequoiaPulse Connect Secure, SonicWall Secure VPN, Swisslog Healthcare’s Translogic PTSVMware ESXiWindows via a SAM security bug, Hello, PrintNightmare (x3+), and PetitPotam, and a new exploit method for wiretapping DNS.

Apple announced a new feature where they scan your content “only” for images of child exploitation provided by an unaccountable third-party, while they assure their customers’ “screeching voices” that they won’t allow governments to directly access the data or feed the database or algorithms (uh-huh), just remember that this is the same company that vowed to silence online dissent and already works with governments to expose their users’ activity. Oh, and they’re launching their own VPN service which they claim even they won’t know what you’re using it for. Wink, wink.

While I’m on the subject of VPNs, Windscribe (a “secure” VPN service) servers were seized and were discovered to not use encryption. Talk about a false promise of privacy!

Now let’s do security. If you still thought Avast (the “get hacked every year” anti-virus company) was worth anything, knowing that Norton (the “we’ll just run our own crypto mining software on your hardware and you can pay us for it” people) was in talks to buy them for about $8B should make your skin crawl. Zoom lost an $85 million class-action cybersecurity lawsuit, and Colonial Pipeline is being targeted now.

The US Federal Government received a C- grade for their IT security. Half of the agencies tested received D grades. These are the same agencies that recently made a claim about the most secure election in history. Pay no attention to the missing 95% of ballots or remote access to voting machines. Or else!

Edward Snowden has a great writeup of physical vs theoretical security concerns,
and another on how the “security” industry is failing everyone. Regular maintenance (of everything!) is critical to technology security. Stale hardware & software are responsible for nearly every security incident. This is what we do and why this newsletter is even being published.

There was a major outage at Akamai that took down a large portion of the Internet.

Google broke ChromeOS twice this month for many users, once by preventing users from being able to login due to a single character coding error. I’m reminded of a Mark Twain quote: “Be careful about reading health books. You may die of a misprint.”

The thing about someone willing to buy your ransomware: when they feel wronged they’re likely to betray your ransomware gang.

Amazon is losing employees while CNN is firing them. Property owners are being ripped off by the state, and their tenants. There are child predators at Disney World.

There’s now a lawsuit over CDC under-counting vaccine deaths, meanwhile they’re over-counting infectionsignoring the risks, downplaying the ineffectiveness of the vaccine-induced herd immunity, and mandating cancer in children. Multiple pharmaceutical giants neglected to keep records of which “vaccines” were placebos and the European Parliament is being held liable for vaccine injuries and deaths. At least there has been victory in Alberta. It’s hard to take them seriously when they’re demonizing free will, treating dictates as law, government agencies are concealing their own violations of international lawmandating doctors violate their medical licenses in order to keep them, while flip-flopping like fish, and imposing prison time for unlawful parading. Would you trust someone with your life who thinks you should be in prison for disagreeing with them? It’s not enough for government to take 13%+ of what you pay at the pump (most gas stations profit is 1% or less) and force you into electric vehicles that they can pull the plug on anytime, they want to charge you for every mile you travel, too, personal or business.

Now for the good news:

Andy’s Mountain Grill & Deli is coming back! Starlink is growing fast and improving reliability and environmental tolerances.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday this month is huge. The typical computer should see roughly 3.0 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Edge, .NET, Servicing Stack, Internet Explorer, and MSRT (~1.5 GB). This includes security updates. A reboot is required.

Apple released updates for iOS 14.7.1 and iPadOS 14.7.1, macOS Big Sur 11.5.1, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave, watchOS 7.6.1, tvOS 14.7, Safari 14.1.2, and iTunes 12.11.4. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 14.7.1 is a security update. Use Settings, General, Software Update to install the most current update.

iPadOS 14.7.1 is a security update. Use Settings, General, Software Update to install the most current update.

watchOS 7.6.1 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 14.7 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 92.0.4515.130 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Big Sur (11.x) means that macOS High Sierra (10.13) and older are no longer supported. If you can not install at least macOS Mojave (10.14) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v21H1) is very large, for the first time it’s actually smaller than the previous release, but it will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 6 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Nvidia 471.68 resolves several bugs. This is not a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Xerox Smart Start 1.6.25.0 doesn’t provide a changelog so should be treated as a security update.
https://www.support.xerox.com/en-us/content/143617

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.27.111 is a security update. Use Help, About to install the most current version.
https://brave.com/

Google Chrome 92.0.4515.131 is a security update. Use Help, About to install the most current version.
https://www.google.com/chrome/

Microsoft Edge 92.0.902.67 is a security update. Use Help, About to install the most current version.
https://www.microsoft.com/en-us/edge/business/download

Firefox 91.0 is a security update. Use Help, Check for updates to install the most current version.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 78.13.0 is a security update. Use Help, Check for updates to install the most current version.
https://www.mozilla.org/en-US/firefox/organizations/all/

SeaMonkey 2.53.8.1 is a security update.
https://www.seamonkey-project.org/

Vivaldi 4.1.2369.16 is a security update. Use Help, About to install the most current version.
https://vivaldi.com/

Internet Updates

One or more of these are likely to be of interest to everyone.

AnyDesk for macOS 6.3.0 improves scam handling, adds PKG release, and resolves several bugs. This is not a security update.
https://anydesk.com/en/downloads

curl 7.78.0 resolves dozens of bugs. This is not a security update.
https://curl.haxx.se/windows/

Dropbox 128.4.2870 doesn’t provide a changelog so should be treated as a security update.
https://www.dropbox.com/

FileZilla Client 3.55.1 resolves a couple bugs. This is not a security update.
https://filezilla-project.org/

Google Earth 7.3.4 is a security update.
https://earth.google.com/

Java 8u301 is a security update.
https://www.java.com/en/download/manual.jsp

Nmap 7.92 resolves dozens of bugs. This is not a security update.
https://nmap.org/

Prosody 0.11.10 is a security update.
https://prosody.im/download/start

PuTTY 0.76 resolves several bugs. This is not a security update.
https://www.chiark.greenend.org.uk/~sgtatham/putty/download.html

Rclone 1.56.0 adds many new features, improves compatibility, and resolves several bugs. This is not a security update.
https://rclone.org/

Skype 8.73.0.124 resolves several bugs. This is not a security update.
https://www.skype.com/

Telegram 2.9.0 resolves several bugs. This is not a security update.
https://telegram.org/

WinSCP 5.19.2 updates libraries and resolves several bugs. This is not a security update.
https://winscp.net/eng/index.php

Zoom 5.7.4.804 improves notifications and resolves several bugs. This is not a security update.
https://zoom.us/

Email updates

These are unlikely to be of interest to most people.

Thunderbird 78.13.0 is a security update. Use Help, Check for updates to get the most current version.
https://www.thunderbird.net/en-US/

Media Updates

These are unlikely to be of interest to most people.

Flickr Downloadr 3.4.1.1 updates libraries. This is not a security update.
https://flickrdownloadr.com/downloads/

iTunes 12.11.4 is a security update.
https://apple.com/itunes

Plex Media Server 1.23.6.4881 resolves several bugs and improves scanner. This is not a security update.
https://www.plex.tv/media-server-downloads/#plex-media-server

Game Updates

These are unlikely to be of interest to most people.

Epic Games 12.2.12 resolves several bugs. This is not a security update.
https://www.epicgames.com/

Nintendo Switch 12.1.0 improves stability. This is not a security update.

Steam 2021.07.21 resolves a path bug. This is not a security update.
https://www.steampowered.com/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Connect 11.2.3 is a security update.
https://helpx.adobe.com/security/products/connect/apsb21-66.html

Adobe Magento Commerce 2.4.3, 2.4.2-p2, and 2.3.7-p1 are security updates.
https://helpx.adobe.com/security/products/magento/apsb21-64.html

Adobe Reader DC 21.005.20060 improves reliability. This is not a security update.
https://get.adobe.com/reader

Atom 1.58.0 improves cosmetics and resolves several bugs. This is not a security update.
https://atom.io/

Audacity 3.0.3 resolves several bugs. This is not a security update.
https://www.audacityteam.org/download/

Blender 2.93.2 resolves dozens of bugs. This is not a security update.
https://www.blender.org/download/

Krita 4.4.7 resolves several bugs. This is not a security update.
https://krita.org/en/download/krita-desktop/

LibreOffice Fresh 7.1.5 resolves over 50 bugs. This is not a security update. The “Fresh” line is beta software and should be avoided for the stable release.
https://www.libreoffice.org/

Nextcloud Desktop 3.3.0 resolves over 50 bugs. This is not a security update.
https://nextcloud.com/

Notepad++ 8.1.2 improves dark mode. This is not a security update.
https://notepad-plus-plus.org/

Security Software Updates

One or more of these is likely to be of interest to most people.

DNSQuerySniffer 1.85 adds sort menu options and improves high DPI support. This is not a security update.
https://www.nirsoft.net/utils/dns_query_sniffer.html

elementary OS 6 is a major update that integrates several new features and controls and a simplified installer. This is not a security update.
https://elementary.io/

RogueKiller 15.0.9 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

uBlock Origin 1.37.2 resolves several books. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Tails 4.21 is a security update.
https://tails.boum.org/install/dvd-download/index.en.html

Capture Updates

These are unlikely to be of interest to most people.

Elgato Game Capture HD 3.70.51 adds PS5 and Xbox Series X/S to input and resolves several bugs. This is not a security update.
https://www.elgato.com/en/game-capture-software

ScreenToGif 2.33.1 resolves several bugs. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

SnagIt 2021.4.3 is a security update.
https://download.techsmith.com/snagit/enu/snagit.exe

Converter Updates

These are unlikely to be of interest to most people.

HandBrake 1.4.0 adds several new filters, improves hardware encoding, resolves several bugs, and updates libraries. This is not a security update.
https://handbrake.fr/

Utility Updates

These are unlikely to be of interest to most people.

Dell Command Update 4.3 is a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 9.15 improves compatibility with Windows 11 and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

GoodSync 11.8.0 resolves several bugs and improves compatibility. This is not a security update.
https://www.goodsync.com/

Homedale 1.98 improves CLI support. This is not a security update.
https://www.the-sz.com/products/homedale/

IsMyHdOK 3.33 improves compatibility with Windows 11 and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

NTLite 2.2.0.8152 adds several new features, improves performance, updates libraries and resolves bugs. This is not a security update.
https://www.ntlite.com/download/

Aomei Partition Assistant 9.4 adds Disk Defrag and resolves a bug. This is not a security update.
https://www.diskpart.com/

ProcDump 10.1 adds an option to specify a dumpfile comment and supports triage dumps. This is not a security update.
https://live.sysinternals.com/

PowerToys 0.43.0 improves stability and accessibility, and resolves dozens of bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

RDCMan 2.82 resolves a couple bugs. This is not a security update.
https://live.sysinternals.com/

RoboForm 9.1.9 resolves several bugs. This follows shortly after a security update.
https://www.roboform.com/

Rufus 3.15 updates libraries and resolves several bugs. This is not a security update.
https://rufus.ie/en/

Sigcheck 2.82 resolves a stability bug. This is not a security update.
https://live.sysinternals.com/

Synergy 1.14.0 is a security update.
https://symless.com/synergy/

Sysmon 13.23 resolves a stability bug. This is not a security update.
https://live.sysinternals.com/

ZoomText 2021 2021.2107.13.400 adds support for new hardware and resolves several bugs. This is not a security update.
https://support.freedomscientific.com/Downloads/ZoomText

Developer Updates

These are unlikely to be of interest to most people.

Node.js 16.6.1 resolves several bugs. This build closely follow 16.6.0, which was a security update.
https://nodejs.org/en/

Node.js 14.17.4 is a security update.
https://nodejs.org/en/

Node.js 12.22.4 is a security update.
https://nodejs.org/en/

Visual Studio Code 1.59 improves extensions, finalizes the Testing API, adds Remote Containers, and resolves several bugs. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.14 resolves dozens of bugs. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.1.26-145957 resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Dada Mail 11.14.2 resolves several bugs. This is not a security update.
https://dadamailproject.com/

Docker Desktop 3.5.2 resolves several bugs. This is not a security update.
https://www.docker.com/products/docker-desktop

Drupal 9.2.3 is a security update.
https://drupal.org/download

HumHub 1.9.0 resolves several bugs. This is not a security update.
https://www.humhub.com/en/download

MailArchiva 8.1.0 resolves several bugs. This is not a security update.
https://mailarchiva.com/

Nextcloud Server 22.1.0 resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

ownCloud Server 10.8 resolves dozens of bugs. This is not a security update.
https://owncloud.org/install/

phpList 3.6.4 improves compatibility. This is not a security update.
https://www.phplist.org/

ScreenConnect 21.10.4238.7885 resolves a couple bugs. This is not a security update.
https://www.connectwise.com/software/control/download

WordPress 5.8 integrates Blocks into Widget logic, adds new patterns, and styles. This is not a security update.
https://wordpress.org/

Antispam Bee 2.10.0 resolves several bugs. This is not a security update.

Autoptimize 2.9.0 improves customization and controls. This is not a security update.

BuddyPress 9.0.0 improves compatibility, block support, and resolves several bugs. This is not a security update.

Contact Form 7 5.4.2 resolves several bugs. This is not a security update.

Interactive World Map 3.1.9.1 improves compatibility. This is not a security update.

myStickymenu 2.5.6 resolves several bugs. This is not a security update.

Postie 1.9.56 resolves a couple bugs. This is not a security update.

Redirection 5.1.3 resolves a couple bugs. This is not a security update.

Slider Revolution 6.5.6 resolves several bugs. This is not a security update.
https://revolution.themepunch.com/

Social Post Feed 2.19.3 improves compatibility. This is not a security update.

Sucuri Security 1.8.27 improves compatibility. This is not a security update.

Visual Composer 38.0 resolves several bugs. This is not a security update.
https://visualcomposer.com/

W3 Total Cache 2.1.6 resolves several bugs. This is not a security update.

WooCommerce 5.5.2 resolves several bugs. This is not a security update.

WordPress Zero Spam 5.0.13 resolves several bugs. This is a security update.

WP Mail SMTP 3.0.3 resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2017-11-14

Hi, Folks!

It’s Patch Tuesday. This month brings updates to almost every browser and mobile, and the normal stuff: Microsoft released their 2 tons of binaries, but were not to be outdone by Adobe, which released updates for almost everything.

The typical computer should see roughly 2gb in updates today. Let’s get started.

Microsoft released updates to Windows, Edge, Internet Explorer, Flash, Server, NET and MSRT (~1.5gb). This includes security updates. A reboot is required.

iOS 11.1.1 is a security update and resolves the “i[A]” bug. Use Settings, General, Software Update to install the most current version.

Adobe Flash Player 27.0.0.187 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Fedora 27-1.6 is a security update. This major version also adds several features, improvements to settings, network, and configuration, updated LibreOffice and more.
https://getfedora.org/en/workstation/download/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 17.0.7.9 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu-

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 62.0.3202.94 resolves several bugs. This is not a security update. Use Menu, Help, About to install the most current version.

Firefox 57.0 is a security update. Use Menu, Help, About to install the most current version.

Firefox ESR 52.5.0 is a security update. Use Menu, Help, About to install the most current version.

Opera 49 is a security update.
https://www.opera.com/download

SeaMonkey 2.49.1 is a security update. Automatic updates are disabled for this release, so you must download and install the new version over the previous version if you use SeaMonkey!
https://www.seamonkey-project.org/releases/

Internet Updates

One or more of these are likely to be of interest to everyone.

aria2 1.33.1 resolves a performance bug. This is not a security update.
https://aria2.github.io/

FileZilla 3.29.0 resolves cosmetic bugs. This is not a security update.
https://filezilla-project.org/

FreeFileSync 9.5 resolves several bugs and adds a dozen improvements. This is not a security update.
https://www.freefilesync.org/download.php

BrowsingHistoryView 2.11 improves logging and command line support for remote device access. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

Media Updates

These are unlikely to be of interest to most people.

CDBurnerXP 4.5.8.6795 adds crossfading, DPI improvements, and resolves a command line assignment bug. This is not a security update.
https://cdburnerxp.se/

Game Updates

These are unlikely to be of interest to most people.

Battle.net Client 20171113 doesn’t provide a changelog, so should be treated as a security update.
https://us.battle.net/en/app/

EA Origin 10.5.5.6040 doesn’t provide a changelog, so should be treated as a security update.
https://www.origin.com/en-us/download

Office Updates

One or more of these are likely to be of interest to most people.

LibreOffice 5.4.3 resolves several bugs. This is not a security update.
https://www.libreoffice.org/

Adobe Experience Manager 6.3.1 is a security update.
https://helpx.adobe.com/security/products/experience-manager/apsb17-41.html

Adobe Shockwave Player 12.3.1.201 is a security update.
https://helpx.adobe.com/security/products/shockwave/apsb17-40.html

Adobe Digital Editions 4.5.7 is a security update.
https://helpx.adobe.com/security/products/Digital-Editions/apsb17-39.html

Adobe InDesign 13.0 is a security update.
https://helpx.adobe.com/security/products/indesign/apsb17-38.html

Adobe DNG Converter 10.0 is a security update.
https://helpx.adobe.com/security/products/dng-converter/apsb17-37.html

Adobe Acrobat and Reader 2018.009.20044, 2017.011.30068, and 11.0.23 are security updates. If you’re still running Adobe Acrobat or Reader 11 or prior, remove it now!
https://helpx.adobe.com/security/products/acrobat/apsb17-36.html

Adobe Connect 9.7 is a security update.
https://helpx.adobe.com/security/products/connect/apsb17-35.html

Adobe Photoshop CC 18.1.2 and 19.0 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb17-34.html

Adobe Flash Player 27.0.0.187 is a security update.
https://helpx.adobe.com/security/products/flash-player/apsb17-33.html

Security Software Updates

One or more of these is likely to be of interest to most people.

Avast! Home Edition 17.8.2318 is a security update.
https://www.avast.com/free-antivirus-download

OpenSSL 1.1.0g is a security update.

RogueKiller 12.11.24 adds detections. This is not a security update.
https://www.adlice.com/softwares/roguekiller/

Stinger 12.1.0.2571 adds detections.
https://12pd.com/click?stinger

Converter Updates

These are unlikely to be of interest to most people.

CDex 1.94 resolves several bugs and improves compatibility. This is not a security update.
http://cdex.mu/?q=download

DVDFab 10.0.6.5 resolves several bugs and adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

NTLite 1.4.1.5741 resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

1Password for Mac 6.8.4 resolves a crash bug. This is not a security update.
https://1password.com/downloads/

GoodSync 10.6.6 improves reliability and resolves several bugs. This is not a security update.
https://12pd.com/click?goodsync

RoboForm 7.9.31 improves compatibility and resolves several bugs. This is not a security update.
https://12pd.com/click?rf

Bitcoin 0.15.1 adds performance improvements, and resolves several bugs. This is not a security update.
https://bitcoin.org/en/download

DesktopOK 4.88 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

GSmartControl 1.1.3 resolves several bugs and now bundles smartctl 6.6. This is not a security update.
https://gsmartcontrol.sourceforge.io/home/index.php/About

USBDeview 2.72 adds a “Friendly Name” column. This is not a security update.
https://www.nirsoft.net/utils/usb_devices_view.html

OSForensics 5.2.1002 resolves several bugs. This is not a security update.
https://www.osforensics.com/download.html

Rufus 2.18 updates libraries, resolves several bugs, and improves interactivity behaviors. This is not a security update.
http://rufus.akeo.ie/

SystemRescueCD 5.1.2 is a security update.
https://www.sysresccd.org/

WinScan2PDF 3.73 adds support for output sizing, and resolves a memory leak. This should be treated as a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

Web Package Updates

These are likely to be of interest only to web developers.

ownCloud Client 2.3.4 resolves a couple bugs. This is not a security update.
https://owncloud.org/install/

TinyMCE 4.7.2 adds dozens of fixes and improvements. This is not a security update.
https://www.tinymce.com/download/

Drupal 8.4.2 reverts the ckeditor library to 4.7.2 due to compatibility issues. This is not a security update.
https://drupal.org/download

Joomla 3.8.2 is a security update.
https://www.joomla.org/

MailEnable 10.00 is a major update with many new features, including integrated XMPP chat, screen sharing, proxy authentication, SOCKS5 proxy, HTTP upload service and more. This is not a security update.
https://www.mailenable.com/

ScreenConnect 6.4.15339.6526 resolves several bugs. This is not a security update.
https://www.screenconnect.com/Download

Akismet 4.0.1 resolves several bugs. This is not a security update.

BuddyPress 2.9.2 is a security update.

Email Log 2.2.3 is a security update.

NextScripts Social Networks Auto-Poster 4.0.11 adds support for the new 280 character Twitter limit, resolves several bugs and improves service compatibility. This is a security update.

Postie 1.9.11 resolves several bugs. This is not a security update.

Redirection 2.9.2 improves compatibility with PHP 5 and resolves several bugs. This is not a security update.

WooCommerce 3.2.3 resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2017-09-12

Hi, Folks!

It’s Patch Tuesday.

Be aware that Adobe Reader 11 will be end-of-life in only a month, so it’s time to either remove Adobe Reader completely, or replace it with Acrobat DC. Likewise, Windows 10 v1511 will be end-of-life in October as well — all prior versions are already end-of-life and should have been replaced. If you haven’t upgraded to v1703 (aka “Creators Update”) yet, do so now here.

The typical computer should see roughly 1.5gb in updates today. Let’s get started.

Microsoft released updates to Windows, Edge, Internet Explorer, Flash, .NET, and MSRT (~1.3gb). This includes security updates. A reboot is required.

ChromeOS 60.0.3112.112 is a security update. Use Menu, Help, About to install the most current version.

Adobe Flash Player 27.0.0.130 is a security update. Flash is being actively replaced with HTML5 on most sites and services, however, so unless you’re 110% positive you need it for critical functions, you should remove it instead. And, within those browsers that have it embedded (Chrome, Edge, Internet Explorer 11+) your best option is to disable it. It’s just not worth the risk.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

AIR 27.0.0.124 is a security update. If you don’t have AIR already, don’t install it now.
Win: https://12pd.com/click?air
Mac: https://12pd.com/click?airmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

BullZip PDF Printer 11.4.0.2674 improves reliability and cosmetics on high-DPI displays and resolves several other bugs. This is not a security update.
http://www.bullzip.com/products/pdf/info.php#download

Display Driver Uninstaller 17.0.7.4 now requires Safe Mode to operate. This is not a security update.
http://www.wagnardsoft.com/display-driver-uninstaller-ddu

Intel Driver Update 2.9 improves reliability. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Browser Updates

One or more of these are likely to be of interest to everyone.

Chrome 61.0.3163.81 is a security update. Use Menu, Help, About to install the most current version.

Firefox 55.0.3 resolves several bugs. This is not a security update.

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 52.3.0 is a security update. Use Menu, Help, About to get the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

DiscordApp 8.15.2017 adds video support to many users and resolves several bugs. This is not a security update.
https://discordapp.com/download

Skype 7.40.0.103 resolves several bugs. This is not a security update.
http://12pd.com/click?skype

Line 7.10.0 now allows embedding YouTube videos directly within Line. This is not a security update.
http://line.me/update

WinSCP 5.11.1 follows shortly on the tails of 5.11 to resolve several bugs, including IPv6 tunneling. This is not a security update.
http://winscp.net/eng/index.php

FileZilla 3.27.1 is a security update.
http://filezilla-project.org/

FreeFileSync 9.3 improves performance and resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

MaxMind GeoIP Data 201709 is a data refresh. This is not a security update.
http://dev.maxmind.com/geoip/geolite

IPNetInfo 1.77 removes the 256 IP address limit for address resolution. This is not a security update.
http://www.nirsoft.net/utils/ipnetinfo.html

Npcap 0.94 allows checksum offloading and Large Send Offloading on adapters that support them. This is not a security update.
https://github.com/nmap/npcap/releases

Evernote 6.7.4.5741 resolves several bugs. This is not a security update.
http://www.evernote.com/

Game Updates

These are unlikely to be of interest to most people.

EA Origin 10.5.2.49155 resolves several bugs, improves notifications, and revamps the My Home page. This is not a security update.
https://www.origin.com/en-us/download

Steam 2017.09.07 resolves a video playback bug and improves third-party integration. This is not a security update.
https://12pd.com/click?steam

Office Updates

One or more of these are likely to be of interest to most people.

Artweaver 6.0.5 increases maximum zoom to 3200%, improves stability, and resolves several bugs. This is not a security update.
http://www.artweaver.de/

Interactive Calendar 2.1 improves spell check, text editing, Unicode support and new color schemes. This is not a security update.
http://www.csoftlab.com/calendar

LibreOffice 5.4.1 resolves nearly 100 bugs. This should be treated as a security update.
http://www.libreoffice.org/

Notepad++ 7.5.1 adds 19 new programming languages, resolves several bugs and removes the Plugin Manager plugin (a replacement will be offered soon). This is not a security update.
https://12pd.com/click?npp

Adobe Reader 11.0.22 is a security update. This is not a security update. However, Adobe Reader and Acrobat 11 (XI) will be discontinued in only one month, so you’re better off switching to Acrobat DC instead of upgrading. Be sure to uncheck all the “optional features” aka crapware that the installer offers.
http://get.adobe.com/reader

Adobe Reader DC Patch 17.012.20098 is a security update. Use Help, Check for Updates to get install the most current version.

Adobe RoboHelp 2017.0.2 is a security update.
https://helpx.adobe.com/security/products/robohelp/apsb17-25.html

ColdFusion 2016.5 and 11.13 are security updates.
https://helpx.adobe.com/security/products/coldfusion/apsb17-30.html

IcoFX 3.1 improves high-DPI support, resolves several bugs. This is not a security update.
http://icofx.ro/

Security Software Updates

One or more of these is likely to be of interest to most people.

Tails 3.1 is a security update.
https://tails.boum.org/install/index.en.html

Norton Power Eraser 20170823 adds new detections and removals. This is a security update.

Avast! Home Edition 17.6.2310 improves anti-phishing, cleanup, notifications, and threat information. This is a security update.
http://www.avast.com/free-antivirus-download

Wireshark 2.4.1 is a security update.
http://www.wireshark.org/

MSRT 5.51 is a security update.
http://www.microsoft.com/en-us/download/malicious-software-removal-tool-details.aspx

Wireless Network Watcher 2.13 adds option to reset dates for selected items. This is not a security update.
http://www.nirsoft.net/utils/wireless_network_watcher.html

RogueKiller 12.11.14 adds detections. This is a security update.
http://www.adlice.com/softwares/roguekiller/

Capture Updates

These are unlikely to be of interest to most people.

XSplit Broadcaster 3.0.1705.3124 resolves several bugs. This is not a security update.
http://www.xsplit.com/get/

Converter Updates

These are unlikely to be of interest to most people.

MakeMKV 1.10.7 adds support for new encodings, improves compatibility with macOS, and resolves several bugs. This is not a security update.
https://12pd.com/click?makemkv

CDex 1.91 improves compatibility and resolves several bugs. This is not a security update.
http://cdex.mu/?q=download

DVDFab 10.0.5.7 adds support for new encodings, and resolves several bugs. This is not a security update.
http://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

RoboForm 8.4.1 adds portable user options during sync, ability to import from several other password managers, duplicate detection, and resolves several bugs. This is not a security update.
https://12pd.com/click?rf

GoodSync 10.5.8 resolves several bugs including SSL reliability fixes. This should be treated as a security update.
https://12pd.com/click?goodsync

NTLite 1.4.0.5565 adds new compatibility features and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

1Password for Mac 6.8.1 improves cosmetics and resolves many bugs. This is a security update.
https://1password.com/downloads/

1Password for Windows 6.7.457 improves focus and alerts. This is not a security update.
https://1password.com/downloads/

CintaNotes 3.9.1 improves high-DPI support, removes unnecessary warnings, and resolves several bugs.
http://cintanotes.com/download

Cygwin 2.9.0 adds several new APIs, improves implementation of elf.h and adds %s support for strptime. This is not a security update.
http://cygwin.com/

DesktopOK 4.76 resolves several bugs. This is not a security update.
http://www.softwareok.com/?seite=Freeware/DesktopOK

DMDE 3.4.0.720 resolves a critical bug in RAID-6 support, adds support for Apple partitions and HFS+/HFSX, and improves FS detection. This is not a security update.
https://dmde.com/

FileLocator Pro 8.2.2739 resolves the thumbnail and icon bug and corrects the German Boolean expression bug. This is not a security update.
http://www.mythicsoft.com/filelocatorpro/download

BatteryInfoView 1.23 changes labels to be more accurate. This is not a security update.
http://www.nirsoft.net/utils/battery_information_view.html

BulkFileChanger 1.50 adds several new command line options and updates attribute display. This is not a security update.
http://www.nirsoft.net/utils/bulk_file_changer.html

CurrPorts 2.32 allows changing the font for the main window. This is not a security update.
http://www.nirsoft.net/utils/cports.html

Password Security Scanner 1.42 adds quick filter support. This is not a security update.
http://www.nirsoft.net/utils/password_security_scanner.html

WakeMeOnLan 1.81 improves targeting support. This is not a security update.
http://www.nirsoft.net/utils/wake_on_lan.html

OSForensics 5.1.1003 improves performance, reliability, logical limits, and adds several new features. This should be treated as a security update.
http://www.osforensics.com/download.html

CCleaner 5.34.6207 improves GUI and no longer removes favicons in Firefox.
https://12pd.com/click?ccleaner

SystemRescueCD 5.1.0 is a security update.
http://www.sysresccd.org/

TeamViewer 12.0.83369 doesn’t provide a current changelog, so should be treated as a security update.
https://www.teamviewer.com/en/download/windows/

WinScan2PDF 3.63 improves compatibility with HP and Brother scanners. This is not a security update.
http://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 3.10 adds a 64-bit version, treemaps, high-contrast support, new keyboard shortcuts, and improved performance. This is not a security update.

Classic Shell 4.3.1 adds support for the Win10 Creators Update and resolves several bugs. This is not a security update.
http://classicshell.net/

GSmartControl 1.1.0 adds a 64-bit version, new statistics and data, “brief” format, interactive drive database update, and other fixes and improvements. This is not a security update.
https://gsmartcontrol.sourceforge.io/home/index.php/About

Kingston SSD Manager 20170829T102642 does not provide a changelog, so should be treated as a security update.
http://www.kingston.com/us/support/technical/ssdmanager

Easy2Boot 1.95 resolves several bugs. This is not a security update.
http://www.easy2boot.com/download/

Rufus 2.17 adds support for several new formats, improve security checks, and resolves several bugs. This should be treated as a security update.
http://rufus.akeo.ie/

Sysmon 6.1 adds monitoring of WMI filters and consumers and fixes a bug in image load filtering. This should be treated as a security update.
https://live.sysinternals.com/

Process Monitor 3.4 now includes a /runtime switch for terminating monitoring after a specified amount of time and fixes a bug in automated boot log conversion. This is not a security update.
https://live.sysinternals.com/

Autoruns 13.8 adds additional autostart entry points, has asynchronous file saving, fixes a bug parsing 32-bit paths on 64-bit Windows, shows the display name for drivers and services, and fixes a bug in offline Virus Total scanning. This is a security update.
https://live.sysinternals.com/

AccessChk 6.11 adds a cache to improve queries that enumerate multiple objects, and has the -s switch start container enumeration at the specified container when -d is specified.
https://live.sysinternals.com/

Developer Updates

These are unlikely to be of interest to most people.

TortoiseSVN 1.9.7 resolves a bug with drag-and-drop. This is not a security update.
http://tortoisesvn.net/downloads.html

SQLite 3.20.1 should be treated as a security update.
https://www.sqlite.org/download.html

SQLite Database Browser 3.10.0 adds support for DBHub.io, improvements to virtual tables, CSV import, filters, table editing, and dozens of resolved bugs. This is a security update.
http://sqlitebrowser.org/

StrawberryPerl 5.26.0.2 resolves a bug. This is not a security update.
http://strawberryperl.com/

Web Package Updates

These are likely to be of interest only to web developers.

ownCloud Client 2.3.3 resolves several bugs and improves performance. This should be treated as a security update.
https://owncloud.org/install/

Plupload 2.3.3 resolves several bugs and updates libraries. This should be treated as a security update.
http://www.plupload.com/

TinyMCE 4.6.6 resolves dozens of bugs. This is not a security update.
http://www.tinymce.com/download/

Drupal 8.3.7 is a security update.
http://drupal.org/download

Joomla 3.7.5 resolves a bug that applied to new installations. This is not a security update.
http://www.joomla.org/

MailEnable Enterprise 9.76 resolves several bugs. This is not a security update.
http://www.mailenable.com/

phpMyAdmin 4.7.4 resolves several bugs. This is not a security update.
http://www.phpmyadmin.net/home_page/news.php

bbPress 2.5.14 improves PHP 7.1+ support, pagination and resolves a row-limit bug. This is not a security update.

BuddyPress 2.9.1 is a security update.

Contact Form 7 4.9 resolves several bugs. This is not a security update.

Multisite Enhancements 1.4.1 improves support for PHP 5.3.

NextScripts Social Networks Auto-Poster 3.8.7 improves reliability with Tumblr and resolves several bugs. This is not a security update.

Postie 1.9.4 resolves a minor bug. This is not a security update.

Really Simple CAPTCHA 2.0.1 improves reliability. This is not a security update.

Redirection 2.7.3 resolves several bugs. This is not a security update.

Sucuri Security 1.8.11 adds support for regular expressions, ability to ignore directories, post-types, and several other fixes. This is not a security update.

Super Post Cleaner 1.1 only changes develop information. This is not a security update.

Widgets on Pages 1.3.0 resolves several bugs. This is not a security update.

WooCommerce 3.1.2 improves importer, and resolves several bugs. This is not a security update.

WPtouch 4.3.19 is a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2017-05-09

Hi, Folks!

It’s Patch Tuesday.

This month brings some downright scary news in the security world.

Intel announced they made a “minor coding error” in their CPUs designed for Enterprise deployment, which allows unauthenticated third parties to control pretty much every aspect of their computers. Oops.

Microsoft released a critical out-of-band security update yesterday, the day before Patch Tuesday, due to the severity of the bug in the Microsoft Malware Protection Engine (a component used by Microsoft firewalls, Windows Defender, Microsoft Security Essentials and other Microsoft security products). If you’re running Windows 10 the update should be have been installed automatically for you during the definition update process. If running an older version of Windows, it’ll be installed for you today when you install the rest of Windows Updates. You are going to install updates today, right?

Have I Been Pwned announced that another billion (with a B) accounts have been released on the web. If nothing else, consider this a reminder that if you haven’t started using a password manager yet, you’re really only hurting yourself.

The Windows 10 Creators Update (aka 1703, aka TH4) has been out about a month now and is remarkably stable. This major upgrade takes a few hours to install but improves responsiveness and corrects the app reinstall bug that has plagued previous builds of Windows 10. Windows 10 version 1507 (aka 10240) is now End-of-Life, which means that it will no longer receive important security updates. If you’re still running this version of Windows you must upgrade to at least version 1511 (10586) to continue to receive security updates. Use the installer here to get the most current version:
https://12pd.com/click?win10upgrade

Like Win10 1507, Windows Vista is dead. Really. It won’t be missed. If you’re still running Vista, take the machine off the Internet (forever) or switch to Fedora or any other supported operating system:
https://getfedora.org/
If you need help, contact me.

Now back to our regularly scheduled program.

The typical computer should see roughly 1gb in updates today. Let’s get started.

Microsoft released updates to Windows, .NET, Windows Defender, Internet Explorer, Edge, WEPOS, and MSRT (~800mb). This includes security updates. A reboot is required.

Google Chrome OS 58.0.3029.89 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Adobe Flash Player 25.0.0.171 is a security update. Flash is being actively replaced with HTML5 on most sites and services, however, so unless you’re 110% positive you need it for critical functions, you should remove it instead. And, within those browsers that have it embedded (Chrome, Edge, Internet Explorer 11+) your best option is to disable it. It’s just not worth the risk.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 17.0.6.4 improves update checking, and is now digitally signed. This should be treated as a security update.
http://www.wagnardsoft.com/display-driver-uninstaller-ddu

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 58.0.3029.96 is a security update. Use Menu, Help, About to install the most current version.

Firefox 53.0.2 is a security update. Use Menu, Help, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 52.1.0 is a security update. Use Menu, Help, About to install the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

.NET Framework 4.7 is a major feature update. This should be treated as a security update. Use Windows Update to get the most current version.

Adobe Shockwave 12.2.8.198 is a security update. Shockwave is not required for most users, so you’re better off removing it than updating. If you find that you do require it later on, you can always install the update then.
https://12pd.com/click?shockwave

Silverlight 5.1.50906 is a security update.
http://www.microsoft.com/getsilverlight/Get-Started/Install/Default.aspx

Java 8u131 is a security update. Java is *not* JavaScript, and most computers do not require it. You’re better off removing it unless you are 100% sure you do require it. You can always install it later if you discover an application requires Java.
http://www.java.com/en/download/manual.jsp

Skype 7.35.0.102 improves stability and reliability. This is not a security update.
https://12pd.com/click?skype

Line 7.3.0 adds Ladder Shuffle and Relay. This is not a security update.
http://line.me/update

WinSCP 5.9.5 is a security update.
http://winscp.net/eng/index.php

Evernote 6.5.4.4720 fixes several bugs. This is not a security update.
http://www.evernote.com/

Nmap 7.40 adds several new scripts, updates libraries, and adds new features. This is a security update.
http://nmap.org/

uTorrent 3.5.0 Build 43580 is a security update.
http://www.utorrent.com/downloads

FileZilla 3.25.2 is a security update.
http://filezilla-project.org/

MaxMind GeoIP Data 201705 is a data refresh.
http://dev.maxmind.com/geoip/

Media Updates

These are unlikely to be of interest to most people.

CDBurnerXP 4.5.7.6623 resolves several bugs. This is not a security update.
http://cdburnerxp.se/

MusicBrainz Picard 1.4.2 resolves several bugs. This is not a security update.
http://musicbrainz.org/doc/MusicBrainz_Picard

Game Updates

These are unlikely to be of interest to most people.

EA Origin 10.4.9.38188 updates the interface and resolves several bugs. This is not a security update.
https://www.origin.com/en-us/download

Office Updates

One or more of these are likely to be of interest to most people.

Paint.net 4.0.16 resolves a crash bug. This is not a security update.
http://www.getpaint.net/

IcoFX 3.0.3 fixes scaling issues on high-DPI displays. This is not a security update.
http://icofx.ro/

Kindle for PC 1.20.1 Build 47037 does not provide a changelog, so should be treated as a security update.
https://12pd.com/click?kindle4pc

Security Software Updates

One or more of these is likely to be of interest to most people.

Tails 2.12 is a security update.
https://tails.boum.org/install/index.en.html

Norton Power Eraser 20170412 is a security update.
https://support.norton.com/sp/en/us/home/current/solutions/kb20100824120155EN_EndUserProfile_en_us

Avast! Home Edition 17.4.2294 resolves several bugs and updates the GUI. This is a security update.
http://www.avast.com/free-antivirus-download

KeePass 1.32 improves several features, fixes bugs and updates libraries. This is a security update.
http://keepass.sourceforge.net/

Wireshark 2.2.6 is a security update.
http://www.wireshark.org/

DNSQuerySniffer 1.61 adds ability to show only failed DNS queries. This is not a security update.
http://www.nirsoft.net/utils/dns_query_sniffer.html

MSRT 5.48 is a security update.
http://www.microsoft.com/en-us/download/malicious-software-removal-tool-details.aspx

Wireless Network Watcher 2.11 updates the internal MAC databae. This is not a security update.
http://www.nirsoft.net/utils/wireless_network_watcher.html

RogueKiller 12.10.8 is a security update.
http://www.adlice.com/softwares/roguekiller/

TDSSKiller 3.1.0.15 is a security update.
http://support.kaspersky.com/viruses/utility#TDSSKiller

Capture Updates

These are unlikely to be of interest to most people.

XSplit Broadcaster 2.9.1701.1640 improves stability on Windows 10 Creators Update. This is not a securty update.
http://www.xsplit.com/get/

XSplit Gamecaster 2.9.1701.1621 improves stability on Windows 10 Creators Update. This is not a securty update.
http://www.xsplit.com/get/

Converter Updates

These are unlikely to be of interest to most people.

FFmpeg 3.3 doesn’t provide a changelog, so should be treated as a security update.
http://ffmpeg.org/ffmpeg.html

DVDFab 10.0.3.6 improves stability and compatibility. This is not a security update.
http://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

NTLite 1.3.0.5024 improves compatibility with Windows 10 Creators Update. This is not a security update.
https://www.ntlite.com/download/

GoodSync 10.4.4 improves stability and compatibility. This is not a security update.
https://12pd.com/click?goodsync

RoboForm 8.3.3 improves stability. This is not a security update.
https://12pd.com/click?rf

Bitcoin 0.14.1 improves performance, fixes several bugs and stability issues. This is not a security update.
http://bitcoin.org/en/download

CintaNotes 3.7 adds drag & drop from any application, improves printing and stability, and resolves several bugs. This is not a security update.
http://cintanotes.com/download

DesktopOK 4.69 improves compatibility. This is not a security update.
http://www.softwareok.com/?seite=Freeware/DesktopOK

AS SSD Benchmark 1.9.5986 improves stability and compatibility within Windows 10. This is not a security update.
http://alex-is.de/PHP/fusion/downloads.php?cat_id=4&download_id=9

LessMSI 1.6.1 improves stability. This is not a security update.
http://lessmsi.activescott.com/

NetworkTrafficView 2.06 adds ability to map source IP address. This is not a security update.
http://www.nirsoft.net/utils/network_traffic_view.html

SearchMyFiles 2.82 adds ability to exclude folders by name without path. This is not a security update.
http://www.nirsoft.net/utils/search_my_files.html

USBDeview 2.66 adds the ability to start the remote registry service even if it’s disabled. This is not a security update.
http://www.nirsoft.net/utils/usb_devices_view.html

WakeMeOnLan 1.79 adds a 64-bit version and updates the MAC address list. This is not a security update.
http://www.nirsoft.net/utils/wake_on_lan.html

WifiChannelMonitor 1.48 updates the internal MAC address list. This is not a security update.
http://www.nirsoft.net/utils/wifi_channel_monitor.html

TaskSchedulerView 1.30 adds quick-filter capability. This is not a security update.
http://www.nirsoft.net/utils/task_scheduler_view.html

CCleaner 5.29.6033 improves compatibility and application support. This is not a security update.
https://12pd.com/click?ccleaner

RapidEE 9.1 build 936 updates translations. This is not a security update.
http://www.rapidee.com/en/download

TeamViewer 12.0.77242 resolves several bugs. This is not a security update.
https://www.teamviewer.com/en-us/download/windows/

WinScan2PDF 3.43 improves compatibility with Windows 10 Creators Update. This is not a security update.
http://www.softwareok.com/?seite=Microsoft/WinScan2PDF

Developer Updates

These are unlikely to be of interest to most people.

Redemption 5.14.0.4776 adds several new objects, and resolves several bugs. This is not a security update.
http://www.dimastr.com/redemption/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VMware Player 12.5.5 is a security update.
http://www.vmware.com/products/player/

VirtualBox 5.1.22-115126 resolves several bugs. This is not a security update.
http://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 4.3.1 resolves several bugs. This is not a security update.
http://www.adminer.org/en/

Piwigo 2.9.0 is a major update that adds several new features. This is not a security update.
http://piwigo.org/

TinyMCE 4.6.0 adds several features and fixes several bugs. This is not a security update.
http://www.tinymce.com/download/

Drupal 8.3.2 resolves dozens of bugs. This is not a security update.
http://drupal.org/download

HumHub 1.2.0 resolves several bugs. This is not a security update.
https://www.humhub.org/en/download

MailEnable 9.74 resolves several bugs. This is not a security update.
http://www.mailenable.com/

ownCloud Client 2.3.2 resolves several stability and reliability bugs. This is not a security update.
https://owncloud.org/install/

ScreenConnect 6.2.12963.6312 resolves several bugs, and improves compatibility. This is not a security update.
http://www.screenconnect.com/Download

WordPress 4.7.4 resolves dozens of bugs. This is not a security update.
http://wordpress.org/

YOURLS 1.7.2 improves stability and GUI, updates libraries, resolves several bugs. This is not a security update.
http://yourls.org/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/