Updates 2021-02-09

Welcome back, Folks!

Today is Patch Tuesday for February, 2021.

This Month in Technology

Malware planted during the SolarWinds hack is still being discovered and SolarWinds is still vulnerable.

ADT (not just employee abuse), Amazon Kindle e-readersAzure Functions, the Australian Securities and Investments CommissionCisco DNA CenterCyberpunk 2077Excellus Health Plan, Inc., ExperianFiberHome routers, Forward AirGolang, various Home Assistant integrationsiOSlibgcrypt, Linux (and macOS) SUDOMalwarebytesMeetMindfulMimecast (also a SolarWinds victim), Nespresso smart cards, New Zealand Central BankNoxPlayerOffice 365OpenWRT forumPalo Alto Networks, the PentagonPerl[.]comPfizerSonicWallStormshieldUK Research and Innovationthe UNUScellularUSDA (again), Vermont Dept of LaborVIPGamesWashington State Auditor’s OfficeWestRock Co., WhatsApp, and Wind River Systems have been hacked.

The EU is fining (victims) of data breaches 39% more than two years ago. Grindr is exposing your information. SpamCop made a boo-boo by not renewing their domain on time, resulting in a huge amount of legitimate messages being treated as spam. The LogoKit phishing platform has been updated to “improve” effectiveness.

The UK Government is giving malware-infected laptops to students and the US federal government has repeatedly supported violation of the third and fourth amendments to plant recording devices on private property. There has been an increase of 93% of leaks and data breaches in 2020.

Whether you pay the ransom or restore from backups: PATCH the vulnerabilities!

I have always called for avoiding pirated software because it poses a unique security risk. Here’s an example. (avoid travelling by train in China)

Federally funded censorship and double-standards are being used to advance cancel culture in bankscoffeejournalism, patriotism, by mere association, while actually inciting violence with absurd rhetoric such as calling a kindly neighbor a terrorist for plowing your snow are being excused as acceptable. While censorship isn’t left or right only one side is willing to ban those most likely to join the military from joining.

Worse yet, they’re even targeting third-parties for cancellation for daring to support free speech. Heck, even Mike Rowe is being cancelled.

Some are actually upset that not enough censorship is taking place while ignoring actual calls for violence, funding terroristsopenly supporting child porn, hypocritically calling censorship a violation of election integrity, and arresting people for posting memes.

No matter how much the narrative is disproven – this was planned by others well in advance, and the capitol police were directly involved, which is probably why they refused assistance from the National Guard and DoD when offered multiple times. There’s plenty more.

At least there’s finally some pushback. Hopefully it’s not too little, too late.

Meanwhile, TIME acknowledges that they did, in fact, collude with big tech, large corporations and foreign governments in violation of state and federal laws in order to steal the election. (But don’t talk about it online!) By the way, is it just a coincidence that so many opponents of free speech are pedophiles?

Facebook will pay $300/ea to Illinois users for violating state biometric laws and yet, they have still violated Polish law and blocked & banned small investors while Zuckerberg bragged about how he censored Trump to prevent a free election. WhatsApp users are leaving in droves, while WhatsApp has shifted messaging to explain that user messages (notably not their “data”) can still be removed.

There’s been a surge in BSODs for some Windows devices after January updates. Microsoft has been beaten to the patch (again) by 0patch for a vulnerability in their installer system.

Google is above the law or at least, demands the ability to be excluded from it. They’ve also banned one app for supporting a popular open source file type and another for allowing access to content it doesn’t control (like Google’s own browsers), and violated their own terms to purge negative reviews in their App Store. YouTube is removing Senate testimony. It should come as no surprise then, that developers are realizing that “doing business with [Google] is a liability.” Do you really need more justification to de-Google?

Mozilla fixed a browser bug that could trigger physical damage to your SSD.

Amazon has been caught colludingendangering privacyhypocritically inciting violence, and stealing, all while pursuing the ability to run the Pentagon Defense Systems (in violation of their own Terms of Service).

Apple is throttling iPhones again, preventing sideloading on M1’s, and took five years to discover a widespread crypto miner in macOS.

Still trust your mobile security? Your operating systems have intentionally designed vulnerabilities/weaknesses.

Especially when it comes to science, sunlight remains the best disinfectant. It turns out “global warming” is worse when humans aren’t polluting the air. But sadly, facts don’t matter anymore, so months have passed and hundreds of thousands of lives were lost before political and social science caught up with actual science to acknowledge HCQ is, in fact, an effective treatment. And surely it’s just a coincidence that testing processes were changed immediately after inauguration?

Investigating and/or punishing people for refusing an experimental treatment (according to the FDA they’re not vaccines) is a violation of the Nuremberg Code, but that won’t prevent governments and corporations from doing it anyway, no matter how many times that is struck down as unconstitutional.

The CDC has illegally inflated COVID statistics, but is suppressing VAERS information about people dying like flies after injections.

Really though, can you trust any medical treatment created by people that struggle with math?

Now for the good news:

The Biden administration has dropped the federal lawsuit against the California Net Neutrality law. This will eventually be what breaks the Big Tech monopoly.

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday this month is huge. The typical computer should see roughly 3 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Edge, .NET, Servicing Stack, and MSRT (~ 2 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iCloud for Windows 12.0 (off and on again), iOS 14.4, iPadOS 14.4, Safari 14.0.3, tvOS 14.4, watchOS 7.3, and Xcode 12.4. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 14.4 is a security update. Use Settings, General, Software Update to install the most current update.

iPadOS 14.4 is a security update. Use Settings, General, Software Update to install the most current update.

watchOS 7.3 is a security update. Use the Watch app on your iPhone to install the most current version.

tvOS 14.4 is a security update. Use System, Software Update to install the most current version.

Google Chrome OS 88.0.4324.109 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Big Sur (11.0) means that macOS High Sierra (10.13) and older are no longer supported. If you can not install at least macOS Mojave (10.14) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (v2009) is huge (about 18% larger than v2004, which was 25% larger than any prior build) so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 6 months and only supports any consumer builds for 18 months. If you don’t let it finish and you’re on a slow connection, this process kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface. This includes “free” applications like Avast, OpenOffice, and games you do not actually play.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.3.6 improves cleanup. This is a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

nVidia 461.40 resolves a dozen bugs. This is not a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.19.92 is a security update. Use Menu, Help, About to install the most current version.
https://brave.com/

Google Chrome 88.0.4324.150 is a security update. Use Menu, Help, About to install the most current version.
https://www.google.com/chrome/

Microsoft Edge 88.0.705.63 is a security update. Use Menu, Help, About to install the most current version.
https://www.microsoft.com/en-us/edge/business/download

Firefox 85.0.2 is a security update. Use Menu, Help, About to install the most current version.
https://www.mozilla.org/en-US/firefox/new/

Firefox ESR 78.7.1 is a security update. Use Menu, Help, About to install the most current version.
https://www.mozilla.org/en-US/firefox/organizations/all/

SeaMonkey 2.53.6 is a security update. Use Menu, Help, About to install the most current version.
https://www.seamonkey-project.org/

Vivaldi 3.6.2165.36 is a security update. Use Menu, Help, About to install the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.8.0 adds account colors, and resolves several bugs. This is not a security update.
https://getmailspring.com/

Thunderbird 78.7.1 is a security update. Use Menu, Help, About to install the most current version.
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

BrowsingHistoryView 2.46 adds support for Brave. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

curl 7.75.0 resolves dozens of bugs and adds several new features. This is not a security update.
https://curl.haxx.se/windows/

Dropbox 115.4.601 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.dropbox.com/

FileZilla Client 3.52.2 resolves several bugs. This is not a security update.
https://filezilla-project.org/

Pocketnet-Core 0.18.18 resolves several bugs. This is not a security update.
https://pocketnet.app/

WinSCP 5.17.10 is a security update.
https://winscp.net/eng/index.php

Zoom 5.5.12494.0204 resolves a couple minor bugs. This is not a security update.
https://zoom.us/

Java 8u281 is a security update.
https://www.java.com/en/download/manual.jsp

Media Updates

These are unlikely to be of interest to most people.

3tene 2.0.10 resolves several bugs. This is not a security update.
https://en.3tene.com/

darktable 3.4.1 resolves about 20 bugs. This is not a security update.
https://www.darktable.org/install/

VLC Media Player 3.0.12 is a security update.
https://www.videolan.org/vlc/

Game Updates

These are unlikely to be of interest to most people.

Steam 2021.02.05 resolves several bugs, improves compatibility, and improves cosmetics. This is not a security update.

PlayStation PS5 20.02-02.50.00 resolves a PS4 installation compatibility issue, improves editing video clips and improves performance. This is not a security update.
https://www.playstation.com/en-us/support/hardware/ps5/system-software/

Office Updates

One or more of these are likely to be of interest to most people.

Atom 1.54.0 updates libraries and resolves several bugs. This is not a security update.
https://atom.io/

Blender 2.91.2 doesn’t have a detailed changelog so should be treated as a security update.
https://www.blender.org/download/

IcoFX 3.5 resolves several bugs. This is not a security update.
https://icofx.ro/

Krita 4.4.2 adds mesh gradients, mesh transform, gradient editor and halftone filter, new brushes, and resolves dozens of bugs. This is not a security update.
https://krita.org/en/download/krita-desktop/

LibreOffice Fresh 7.1.0 resolves hundreds of bugs and improves reliability, stability, and compatibility. This is not a security update. This is beta software and should be avoided by most users.
https://www.libreoffice.org/

Lightworks NLE 2021.1 adds dozens of new features and improvements, and resolves many bugs. This is not a security update.
https://www.lwks.com/

Nextcloud Desktop 3.1.2 adds several new features: SVG client branding, push notifications for file changes, conflict resolution trigger and more. This is not a security update.
https://nextcloud.com/

OpenOffice 4.1.9 improves stability and compatibility. This is not a security update.
https://www.openoffice.org/download/

Paint.net 4.2.15 resolves several bugs. This is not a security update.
https://www.getpaint.net/

FrameMaker 2019 Update 8 64bit (2019.0.8) doesn’t provide a changelog, so should be treated as a security update.
64-bit: https://supportdownloads.adobe.com/detail.jsp?ftpID=7063
32-bit: https://supportdownloads.adobe.com/detail.jsp?ftpID=7065

Adobe Acrobat and Reader 2021.001.20135, 2020.001.30020, and 2017.011.30190 are security updates.
https://helpx.adobe.com/security/products/acrobat/apsb21-09.html

Adobe Animate 21.0.3 is a security update.
https://helpx.adobe.com/security/products/animate/apsb21-11.html

Adobe Dreamweaver 20.2.1 and 21.1 are security updates.
https://helpx.adobe.com/security/products/dreamweaver/apsb21-13.html

Adobe Illustrator 25.2 is a security update.
https://helpx.adobe.com/security/products/illustrator/apsb21-12.html

Adobe Photoshop 21.2.5 and 22.2 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb21-10.html

Magento 2.4.2, 2.4.1-p1, and 2.3.6-p1 are security updates.
https://helpx.adobe.com/security/products/magento/apsb21-08.html

Security Software Updates

One or more of these is likely to be of interest to most people.

Tails 4.15.1 is a security update.
https://tails.boum.org/install/dvd-download/index.en.html

RogueKiller 14.8.4 resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

uBlock Origin 1.33.2 resolves several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

VT-CLI 0.9.0 resolves a bug with URL parsing. This is not a security update.
https://github.com/VirusTotal/vt-cli/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 2021.2.0 resolves several bugs. This is not a security update.
https://12pd.com/click?snagit

Utility Updates

These are unlikely to be of interest to most people.

1Password for Windows 7.6.791 resolves several bugs. This is not a security update.
https://1password.com/downloads/windows/

Bitcoin 0.21.0 resolves over a dozen bugs and improves networking. This is not a security update.
https://bitcoin.org/en/download

Bitwarden 1.24.6 improves biometrics, search, and usability. This is not a security update.
https://bitwarden.com/

Carbonite 6.3.8 resolves a bug with NAS backups. This is not a security update.
https://account.carbonite.com/

CCleaner 5.76.8269 improves cleaning and accessibility, and resolves several bugs. This is not a security update.
https://www.ccleaner.com/

CPU-Z 1.95 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

DesktopOK 8.44 improves toolset. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DriveImage XML 2.60 doesn’t provide a changelog so should be treated as a security update.
https://www.runtime.org/driveimage-xml.htm

Etcher 1.5.116 updates libraries and improves cleanup of temp files. This is not a security update.
https://www.balena.io/etcher/

Everything 1.4.1.1005 is a security update.
https://www.voidtools.com/

Fido 1.18 adds support for the latest 20H2 refresh. This is not a security update.
https://github.com/pbatard/Fido/releases

GoodSync 11.5.6 improves stability, reliability and sync, and resolves several bugs. This is not a security update.
https://12pd.com/click?goodsync

Homedale 1.92 resolves several bugs. This is not a security update.
https://www.the-sz.com/products/homedale/

IsMyHdOK 2.81 adds automatic update and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

LessMSI 1.8.1 resolves a display bug. This is not a security update.
https://lessmsi.activescott.com/

NTLite 2.0.0.7784 resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

ProduKey 1.95 adds option to extract partial key from WMI. This is not a security update.
https://www.nirsoft.net/utils/product_cd_key_viewer.html

PSAppDeploy 3.8.4 resolves several bugs. This is not a security update.
https://psappdeploytoolkit.com/

RAMDisk 4.4.0.RC36 resolves several bugs and updates libraries. This is not a security update.
http://memory.dataram.com/products-and-services/software/ramdisk

RoboForm 9.1.1 updates credit card storage data, resolves several bugs, and now uses secure transmission for automatic updates. This is a security update.
https://12pd.com/click?rf

SimpleWMIView 1.42 adds an option to start hidden. This is not a security update.
https://www.nirsoft.net/utils/simple_wmi_view.html

TaskSchedulerView 1.66 adds pagination to the properties widow and adds Task Filename column. This is not a security update.
https://www.nirsoft.net/utils/task_scheduler_view.html

TeamViewer 15.14.5 was released. The TeamViewer release notes have been unavailable for over a month, so while it might be a security update, it would be safer to remove TeamViewer until these issues are resolved.
https://www.teamviewer.com/en/download/windows/

USB Oblivion 1.16.0.0 adds ability to preserve desktop settings and clean UserAssist keys. This is not a security update.
http://www.cherubicsoft.com/en/projects/usboblivion

WinScan2PDF 6.55 resolves several bugs and improves scanner compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 4.1.2.0 resolves a dozen bugs. This is not a security update.
https://developer.android.com/studio

MySQL ConnectorNet 8.0.23 is a security update.
https://dev.mysql.com/downloads/connector/net/

Node.js 15.8.0 resolves dozens of bugs. This is not a security update.
https://nodejs.org/en/

Node.js 14.15.5 resolves several bugs. This is not a security update.
https://nodejs.org/en/

SQLite 3.34.1 adds new features and resolves several bugs. This is not a security update.
https://www.sqlite.org/download.html

StrawberryPerl 5.32.1.1 resolves several bugs. This is not a security update.
https://strawberryperl.com/

Visual Studio Code 1.53 resolves several bugs and adds several features and controls. This is not a security update.
https://code.visualstudio.com/

WinMerge 2.16.10 resolves several bugs and adds new command-line switches and features. This is not a security update.
https://winmerge.org/

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.11 resolves dozens of bugs. This is not a security update.
https://ppsspp.org/downloads.html

VirtualBox 6.1.18-142142 resolves several stability and reliability bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Adminer 4.7.9 is a security update.
https://www.adminer.org/en/

Coppermine Gallery 1.6.10 improves compatibility with PHP 8.01. This is not a security update.
https://coppermine-gallery.net/

Docker Desktop 3.1.0 resolves several bugs. This is not a security update.
https://www.docker.com/products/docker-desktop

Drupal 9.0.11 is a security update.
https://drupal.org/download

Drupal 9.1.4 resolves dozens of bugs. This is not a security update.
https://drupal.org/download

HumHub 1.7.2 resolves over a dozen bugs. This is a security update.
https://www.humhub.com/en/download

Nextcloud Server 20.0.7 updates libraries and resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

OpenCart 3.0.3.7 doesn’t provide a detailed changelog so should be treated as a security update.
https://www.opencart.com/

Piwigo 11.3.0 resolves several bugs. This is a security update.
https://piwigo.org/

ScreenConnect 21.2.2159.7699 adds a security tile to configure security options and resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

SMF 2.0.18 is a security update.
https://www.simplemachines.org/

WordPress 5.6.1 resolves several bugs. This is not a security update.
https://wordpress.org/

Social Post Feed 2.18.2 improves GDPR compatibility and resolves a deletion bug. This is not a security update.

Multisite Enhancements 1.6.1 resolves a path bug. This is not a security update.

Redirection 5.0.1 adds support for PHP 8 and resolves several bugs. This is not a security update.

NextScripts Social Networks Auto-Poster 4.3.20 resolves several bugs. This is not a security update.

Sucuri Security 1.8.25 updates the password reset process. This is not a security update.

W3 Total Cache 2.1.0 resolves several bugs and adds cache groups. This is not a security update.

WooCommerce 4.9.2 improves compatibility and disables untested plugins from status and plugin pages. This is not a security update.

WP Mail SMTP 2.6.0 improves compatibility. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

 

Updates 2020-01-14

Happy new year, Folks!

Today is Patch Tuesday for January 2020.

Windows 7 is now officially EOL

Windows 7 is officially end-of-life (EOL). If you’re still running it, shame on you, and if you are running a licensed version of Windows 7 or 8 you can still upgrade to Windows 10 and have a supported version of Windows for the foreseeable future. Don’t want to do it yourself? Call me!
https://saferpc.info/contact/
With any luck there won’t be a zeroday vulnerability in Windows 7 that’s actively exploited only days after it becomes EOL. Please don’t let your Win7 machines online.

Now back to our regularly scheduled program. The typical computer should see roughly 2 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Internet Explorer, .NET, Servicing Stack, and MSRT (~1.5 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Catalina 10.15.2.2 Combo Update, iCloud 10.9.1, iCloud 7.16, and iTunes 12.10.3. These are security updates. Use Apple Software Update to install the most current versions.

Google Chrome OS 79.0.3945.86 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Adobe Flash Player 32.0.0.314 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Catalina (10.15) means that macOS Sierra (10.12) and older are no longer supported. If you can not install at least macOS High Sierra (10.13) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (1909) is a pretty small update so will install quickly. Windows 10 pushes you to get the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, this process kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.2.1 adds support for newer hardware. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Intel Driver and Support Assistant 19.12.50 resolves several bugs. This is not a security update.
https://www.intel.com/p/en_US/support/detect

nVidia 441.87 adds maximum framerate option, VRSS, performance and reliability improvements. This is not a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Daemon Tools Lite 10.12 adds mobile media support. This is not a security update.
https://www.daemon-tools.cc/products/dtLite

Browser Updates

One or more of these are likely to be of interest to everyone.

Vivaldi 2.10.1745.26 is a security update. Use Menu, Help, About to install the most current version.

Google Chrome 79.0.3945.117 is a security update. Use Menu, Help, About to install the most current version.

Google Chrome Dictionary 9-0 updates dictionary words for English and Farsi.

Firefox 72.0.1 is a security update. Use Menu, Help, About to install the most current version.

Firefox ESR 68.4.1 is a security update. Use Menu, Help, About to install the most current version.

Iridium 2019.11.78 is a security update. Use Menu, Help, About to install the most current version.
https://iridiumbrowser.de/

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 68.4.1 is a security update. Use Menu, Help, About to install the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

BrowsingHistoryView 2.35 adds option to remove certain history records. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

FileZilla Client 3.46.3 is a security update.
https://filezilla-project.org/

Technitium DNS Server 4.1 updates libraries, improves installer, and adds several new features to the web interface.
https://technitium.com/dns/

FreeFileSync 10.19 improves consistency, adds context menu macros, and resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

IPNetInfo 1.90 adds option to open an address within Google Maps. This is not a security update.
https://www.nirsoft.net/utils/ipnetinfo.html

Npcap 0.9986 improves compatibility. This is not a security update.
https://nmap.org/npcap/

Pocketnet-GUI 0.0.55 resolves several bugs. This is not a security update.
https://github.com/pocketnetteam/pocketnet.gui/releases/latest

Media Updates

These are unlikely to be of interest to most people.

iTunes 12.10.3 is a security update. Use Apple Software Update to install the most current version.

Game Updates

These are unlikely to be of interest to most people.

Epic Games 6.12.0 adds reviews and resolves bugs. This is not a security update.
https://www.epicgames.com/

Steam 2020.12.16 resolves several bugs. This is not a security update.

PlayStation PS4 7.02 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/system-updates/ps4/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 19.021.20061 is a security update. Use Help, Check for Updates to install the most current version.

Atom 1.43.0 improves syntax highlighting and resolves several bugs. This is not a security update.
https://atom.io/

LibreOffice Fresh 6.3.4 (beta) fixes over 120 bugs. This is a security update.
https://www.libreoffice.org/

Illustrator CC 2019 24.0.2 is a security update.
https://helpx.adobe.com/security/products/illustrator/apsb20-03.html

Adobe Experience Manager 6.5.3, 6.4.7, and 6.3.3.7 are security updates.
https://helpx.adobe.com/experience-manager/aem-releases-updates.html

Security Software Updates

One or more of these is likely to be of interest to most people.

elementary OS 5.1 resolves several bugs, updates libraries, and improves compatibility and versatility. This is a security update.
https://elementary.io/

Gpg4win 3.1.11 resolves several bugs. This is a security update.
https://www.gpg4win.org/download.html

IISCrypto 3.1 improves compatibility. This is not a security update.
https://www.nartac.com/Products/IISCrypto/Default.aspx

OpenSSL 1.0.2u is a security update.

RogueKiller 14.0.4 updates engine, resolves several bugs, and improves performance. This is a security update.
https://www.adlice.com/softwares/roguekiller/

TinyWall 2.1.14 resolves a stability bug. This is not a security update.
https://tinywall.pados.hu/

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 2020.1.0 adds several new features, improves performance and reliability, and resolves several bugs. This is not a security update.
https://download.techsmith.com/snagit/enu/snagit.exe

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 11.0.6.6 adds support for new encodings and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

FFmpeg 4.2.2 doesn’t provide a changelog so should be treated as a security update.
https://ffmpeg.org/ffmpeg.html

IsoBuster 4.5 improves scan capabilities, adds support for newer hardware and formats, and resolves several bugs. This is not a security update.
https://www.isobuster.com/download.php

MKVToolnix 42.0.0 resolves several bugs, improves consistency, and adds several features. This is a security update.
https://www.fosshub.com/MKVToolNix.html

Utility Updates

These are unlikely to be of interest to most people.

Cygwin 3.1.2 resolves several bugs. This is a security update.
https://cygwin.com/

DesktopOK 6.81 improves screenshot feature. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Etcher 1.5.71 updates library. This is not a security update.
https://www.balena.io/etcher/

Everything CLI 1.1.0.16 resolves several bugs. This is not a security update.
https://www.voidtools.com/

GoodSync 10.10.19 resolves several bugs. This is not a security update.
https://12pd.com/click?goodsync

IsMyHdOK 2.01 improves benchmarking. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

NTLite 1.8.0.7261 improves compatibility. This is not a security update.
https://www.ntlite.com/download/

OSForensics 7.1.1004 improves search and index, and resolves several bugs. This is not a security update.
https://www.osforensics.com/download.html

ProcessMonitor 3.53 doesn’t provide a changelog, so should be treated as a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/procmon

Process Explorer 16.31 doesn’t provide a changelog, so should be treated as a security update.
https://docs.microsoft.com/en-us/sysinternals/downloads/process-explorer

SearchMyFiles 3.10 adds action controls. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

Sysmon 10.42 resolves several bugs and adds filtering conditions. This is a security update.

Zoomit 4.52 resolves several dual-monitor bugs. This is not a security update.

Whois 1.21 resolves several bugs. This is not a security update.

WifiInfoView 2.60 adds AP shortcut controls. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

WinScan2PDF 5.15 improves TWAIN support and PDF optimization. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

Developer Updates

These are unlikely to be of interest to most people.

Java 8u241 is a security update. If you do not know that you require Java, it’s safest to remove it.
https://www.java.com/en/download/manual.jsp

MySQL ConnectorNet 8.0.19 is a security update.
https://dev.mysql.com/downloads/connector/net/

Node.js 13.6.0 resolves several bugs, adds error monitoring and PSK support. This is not a security update.
https://nodejs.org/en/

Redemption 5.22.0.5498 adds DL expansion, and resolves several bugs. This is not a security update.
http://www.dimastr.com/redemption/

Visual Studio Code 1.41.1 resolves several bugs. This is not a security update.
https://code.visualstudio.com/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.1.0-135406 adds support for several new features, 3D support, and resolves dozens of bugs. This is a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 8.8.1 is a security update.
https://drupal.org/download

Joomla 3.9.14 is a security update.
https://www.joomla.org/

MailEnable 10.29 resolves several bugs. This is not a security update.
https://www.mailenable.com/

ModSecurity 3.0.4 resolves dozens of bugs and adds support or new rule types. This is a security update.
https://github.com/SpiderLabs/ModSecurity/releases

Nextcloud Server 17.0.2 resolves several bugs and improves compatibility. This is a security update.
https://nextcloud.com/

phpList 3.5.0 doesn’t provide a changelog so should be treated as a security update.
https://nextcloud.com/

phpMyAdmin 4.9.4 and 5.0.1 are security updates.
https://www.phpmyadmin.net/

ScreenConnect 19.5.26194.7292 improves compatibility and installation. This is not a security update.
https://www.connectwise.com/software/control/download

SMF 2.0.17 is a security update.
https://www.simplemachines.org/

WordPress 5.3.2 is a security update.
https://wordpress.org/

Autoptimize 2.6.1 resolves several bugs. This is not a security update.

bbPress 2.6.3 resolves several bugs. This is not a security update.

BuddyPress 5.1.2 is a security update.

Custom Facebook Feed 2.12.3 resolves several bugs and adds new features. This is not a security update.

myStickymenu 2.3.2 resolves several bugs. This is not a security update.

Redirection 4.6.2 improves compatibility. This is not a security update.

Simple Lightbox 2.8.0 resolves several bugs and updates minimum requirements. This is not a security update.

W3 Total Cache 0.12.0 improves compabiilty and performance, resolves several bugs. This is not a security update.

WP Mail SMTP 1.8.1 improves compatibility. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2019-01-08

Welcome to 2019, Folks! I’ve never been so happy to have a year behind me. 2019 is looking good even if it starts with a huge number of updates.

Today is Patch Tuesday and it’s a big one. Every major vendor has their regular updates, and it looks like every minor vendor took the holiday break to work on updates for their software, too.

The typical computer should see roughly 3 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Edge, Internet Explorer, .NET, Flash, and MSRT (~2 GB). This includes security updates. A reboot is required.

iOS 12.1.2 is a security update. Use Settings, General, Software Update to install the most current update.

Adobe AIR 32.0.0.89 is a security update.
Win: https://12pd.com/click?air
Mac: https://12pd.com/click?airmac

Adobe Flash Player 32.0.0.114 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Google Chrome OS 71.0.3578.94 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The now-current release of Windows 10 (1809) will cause your computer to feel unusually slow until it is installed. This is a side-effect of the Windows 10 upgrade cycle, which pushes out 3-6 GB through Windows update to get you to the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, it will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.0.6 resolves several bugs and adds support for newer hardware. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Logitech Options 7.10.5 is a security update.
https://support.logitech.com/en_us/software/options

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 71.0.3578.98 is a security update.

Vivaldi 2.2.1388.37 is a security update.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.5.5 adds preview for common attachment types and resolves several bugs. This is not a security update.
https://getmailspring.com/

Internet Updates

One or more of these are likely to be of interest to everyone.

Skype 8.36.0.52 resolves several bugs. This is not a security update.
https://12pd.com/click?skype

DNSDataView 1.56 adds command-line configuration syntax. This is not a security update.
https://www.nirsoft.net/utils/dns_records_viewer.html

IPNetInfo 1.80 now defaults to detecting IPv6 addresses and provides command-line configuration syntax. This is not a security update.
https://www.nirsoft.net/utils/ipnetinfo.html

WinSCP 5.13.7 resolves several bugs. This is not a security update.
https://winscp.net/eng/index.php

uTorrent 3.5.5 Build 44954 resolves several bugs. This is not a security update.
https://www.utorrent.com/downloads

FreeFileSync 10.7 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Npcap 0.99-r8 resolves several bugs. This is not a security update.
https://nmap.org/npcap/

MaxMind GeoIP Data 201901 is a data refresh.
https://dev.maxmind.com/geoip/geolite

Media Updates

These are unlikely to be of interest to most people.

VLC Media Player 3.0.5 resolves several bugs, updates libraries and components, and now imposes runtime hardening on macOS. This is not a security update.
https://www.videolan.org/vlc/

MusicBrainz Picard 2.1 resolves many bugs, adds AAC/ADTS/MIDI/SMF support, $delete, $title, and several other improvements. This is not a security update.
https://picard.musicbrainz.org/

Game Updates

These are unlikely to be of interest to most people.

EA Origin 10.5.32.18460 resolves several bugs and adds data moving. This is not a security update.
https://www.origin.com/en-us/download

PlayStation PS4 6.20 improves performance. This is not a security update. Note that Sony says it is important not to install this update “soon before or soon after” a power outage. If you’re planning to have a power outage, wait for well after it ends before installing the PS4 update. LOL
https://www.playstation.com/en-us/support/system-updates/ps4/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 19.010.20069 is a security update. Use Help, Check for Updates to install the most current version.

Adobe Connect 10.1 is a security update.
Win: https://www.adobe.com/go/Connectmsi
Mac: https://www.adobe.com/go/ConnectSetupMac

Adobe Digital Editions 4.5.10 is a security update.
https://www.adobe.com/solutions/ebook/digital-editions/download.html

Notepad++ 7.6.2 resolves several bugs and improves the plugin sanity…but requires that you move any plugins you put in %appdata% for 7.6 under %programdata% now with 7.6.1+, but still allows custom user-level configuration of the installed plugins through %appdata%. It’s the right way to do things and will be better for all of us once we get past this. This is not a security update.
https://12pd.com/click?npp

Krita 4.1.7 resolves several bugs, including a rather annoying wifi bug introduced by a dependency. This is not a security update.
https://krita.org/en/download/krita-desktop/

LibreOffice Fresh 6.1.4 resolves over a hundred bugs. This is not a security update.
https://www.libreoffice.org/

Kindle for PC 1.25.0 Build 52064 doesn’t provide a changelog, so should be treated as a security update.
https://12pd.com/click?kindle4pc

Security Software Updates

One or more of these is likely to be of interest to most people.

TDSSKiller 3.1.0.25 doesn’t provide a changelog so should be treated as a security update.
https://support.kaspersky.com/viruses/utility#TDSSKiller

Wireless Network Watcher 2.19 updates the MAC addresses database. This is not a security update.
https://www.nirsoft.net/utils/wireless_network_watcher.html

RogueKiller 13.0.21 resolves several bugs, adds signatures, improves high-DPI support, and updates core engine. This is not a security update.
https://www.adlice.com/softwares/roguekiller/

SuperAntiSpyware 8.0.1026 resolves several bugs and adds ability to disable notifications.
https://www.superantispyware.com/download.html

Avast! Home Edition 19.1.2360 resolves several bugs, improves GUI, and reduces clutter. It still doesn’t behave well with low-resolution screens.
https://www.avast.com/free-antivirus-download

KeePass 1.37 adds several options including the ability to avoid storing data in the clipboard history. This should be treated as a security update.
https://keepass.info/

Converter Updates

These are unlikely to be of interest to most people.

CDex 2.13 resolves several bugs. This is not a security update.
https://cdex.mu/?q=download

AVStoDVD 2.8.8 resolves several bugs, adds several new features, and updates libraries. This should be treated as a security update.
https://sites.google.com/site/avstodvdmain/

DVDFab 11.0.1.2 adds several new output options, new encodings, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

IsoBuster 4.3 adds support to many new formats, resolves several new bugs, and adds syntax and command-line options, settings, performance improvements, and more. This is not a security update.
https://www.isobuster.com/download.php

Utility Updates

These are unlikely to be of interest to most people.

RoboForm 8.5.5 resolves several bugs. This is not a security update.
https://12pd.com/click?rf

7-Zip 18.06 improves performance and resolves several bugs. This is not a security update.
https://www.7-zip.org/

GoodSync 10.9.21 improves stability, license management, and resolves several bugs. This is not a security update.
https://12pd.com/click?goodsync

NTLite 1.7.2.6650 adds command-line support and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

1Password for Mac 7.2.4 is a security update.
https://1password.com/downloads/mac/

1Password for Windows 7.2.617 improves stability and compatibility. This should be considered a security update.
https://1password.com/downloads/windows/

DevManView 1.56 adds command-line configuration support and now returns an error code instead of 0 on error. This is not a security update.
https://www.nirsoft.net/utils/device_manager_view.html

DesktopOK 5.82 improves compatibility and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Everything 1.4.1.924 resolves several bugs. This is not a security update.
https://www.voidtools.com/

Sysmon 8.04 reverts a filtering change that broke existing configuration files, and resolves a couple bugs. This is not a security update.
https://sysinternals.com/

Bitcoin 0.17.1 resolves several bugs and improves performance. This is not a security update.
http://bitcoin.org/en/download

PointerStick 3.41 is a cosmetic update. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

SearchMyFiles 2.91 adds duplicate file indication. This is not a security update.
https://www.nirsoft.net/utils/search_my_files.html

TaskSchedulerView 1.46 adds policy control for multiple instances and a column for network availability requirement. This is not a security update.
https://www.nirsoft.net/utils/task_scheduler_view.html

WifiChannelMonitor 1.58 adds always on top support and updates internal MAC database. This is not a security update.
https://www.nirsoft.net/utils/wifi_channel_monitor.html

WinScan2PDF 4.67 adds support for new translations and improves customization. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

Developer Updates

These are unlikely to be of interest to most people.

Node.js 11.6.0 adds and improves certificate trust and resolves several bugs. This should be treated as a security update.
https://nodejs.org/en/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.0.0-127566 is a major update with many resolved bugs. This version adds HiDPI support, export to Oracle Cloud Infrastructure, improved setup and maintenance, improved 3D support for guests, surround sound speakers, and Hyper-V as fallback core for compatibility. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

TinyMCE 4.9.2 resolves several bugs. This is not a security update.
https://www.tinymce.com/download/

phpList 3.3.7 resolves a minor bug. This is not a security update.
http://www.phplist.com/download

Coppermine Gallery 1.5.48 is a security update.
https://coppermine-gallery.net/

Drupal 8.6.5 resolves several bugs. This is not a security update.
https://drupal.org/download

YOURLS 1.7.3 resolves several bugs, adds hooks, and updates libraries. This should be treated as a security update.
https://yourls.org/

WordPress 5.0.2 resolves over 70 bugs in the 5.0 branch and follows quickly on the heels of the 5.0.1 security update. This should be treated as a security update to 5.0.
https://wordpress.org/

Contact Form 7 5.1.1 improves handling of empty response. This is not a security update.

Postie 1.9.27 improves support for parent post detection. This is not a security update.

Sucuri Security 1.8.19 resolves a couple bugs. This is not a security update.

Theme My Login 7.0.12 improves compatibility and reliability. This is not a security update.

WooCommerce 3.5.3 resolves a cosmetic bug for WP5 compatibility. This is not a security update.

WP Add Custom CSS 1.1.3 improves compatibility and uninstaller. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

 

Updates 2017-12-12

Hi, Folks!

It’s Patch Tuesday and it’s a big one. Just in time for Christmas Microsoft, Apple, Adobe, and more have released tons of security updates to keep the IT guy you know and love busy all season long.

I’ve had a lot of calls recently from people whose computers seem unusually slow since late October. This is a side-effect of the Windows 10 upgrade cycle, which pushes out 6gb through Windows update to get you to the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, it will kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients at The Farmory, or, if you prefer to have me mail it to you please contact me for information.

The typical computer should see roughly 2gb in updates today. Let’s get started.

Microsoft released updates to Windows, Edge, Internet Explorer, Flash, Defender, Server, .NET and MSRT (~1.5gb). This includes security updates. A reboot is required.

Apple released updates for macOS High Sierra 10.13.2, macOS Security Update 2017-002 Sierra, macOS Security Update 2017-005 El Capitan, tvOS 11.2, watchOS 4.2, iOS 11.2, Safari 11.0.2 and iTunes 12.7.2. This includes security updates. Use Apple Software Update to install the most current versions. A reboot is required.

iOS 11.2 is a security update. Use Settings, General, Software Update to install the most current version. A reboot is required.

watchOS 4.2 is a security update. Use the Watch app on your iPhone to install the most current version.

Google Chrome OS 62.0.3202.97 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Adobe Flash Player 28.0.0.126 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Adobe AIR 28.0.0.127 is a security update.
Win: https://12pd.com/click?air
Mac: https://12pd.com/click?airmac

Fedora 27-1.6 is a security update. This major version also adds several features, improvements to settings, network, and configuration, updated LibreOffice and more.
https://getfedora.org/en/workstation/download/

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 17.0.8.0 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Intel Driver Update 3.1 improves scanning and reporting. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 63.0.3239.84 is a security update. Use Menu, Help, About to install the most current version.

Firefox 57.0.2 is a security update. Use Menu, Help, About to install the most current version.

Firefox ESR 52.5.2 is a security update. Use Menu, Help, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 52.5.0 is a security update. Use Menu, Help, About to install the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

DiscordApp 12.11.2017 improves overlay, embeds, tray support, resolves several bugs, and more. This is not a security update.
https://discordapp.com/download

Line 7.17.0 adds in-app GIF creation and filters. This is not a security update.
https://line.me/update

uTorrent 3.5.0 Build 44294 resolves a couple bugs. This is not a security update.
https://www.utorrent.com/downloads

MaxMind GeoIP Data 201712 is a data refresh.
https://dev.maxmind.com/geoip/geolite

BrowsingHistoryView 2.12 adds Quick Filter feature. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

Npcap 0.97 improves hardware compatibility, WinPcap compatibility, and removes silent installation support. This is not a security update.
https://nmap.org/npcap/

Media Updates

These are unlikely to be of interest to most people.

iTunes 12.7.2 is a security update. Use Apple Software Update to install the most current version.

Game Updates

These are unlikely to be of interest to most people.

PlayStation PS3 4.82 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/system-updates/ps3/

EA Origin 10.5.8.11002 improves tray behavior, overlay adjustments, and other fixes. This is not a security update.
https://www.origin.com/en-us/download

Office Updates

One or more of these are likely to be of interest to most people.

Artweaver 6.0.7 improves stability and performance, PS plugin compatibility, and resolves several bugs. This is not a security update.
https://www.artweaver.de/

Notepad++ 7.5.3 resolves updater issues, improves stability. This is not a security update.
https://12pd.com/click?npp

SketchUp 18.0.16975 resolves dozens of bugs and adds several new features. This is not a security update.
https://www.sketchup.com/

Adobe Reader DC Patch 18.009.20050 is a security update. Use Help, Check for updates to install the most current version.

Adobe DNG Converter 10.1 adds support for new hardware. This is not a security update.
Win: https://supportdownloads.adobe.com/detail.jsp?ftpID=6285
Mac: https://supportdownloads.adobe.com/detail.jsp?ftpID=6283

FrameMaker 2017 Cumulative update 3 (2017.0.3) is a security update.
https://supportdownloads.adobe.com/detail.jsp?ftpID=6287

Security Software Updates

One or more of these is likely to be of interest to most people.

Tails 3.3 is a security update.
https://tails.boum.org/install/index.en.html

oclGaussCrack 1.4 improves reliability. This is not a security update.
https://hashcat.net/oclGaussCrack/

Wireshark 2.4.3 is a security update.
https://www.wireshark.org/

Gpg4win 3.0.2 resolves over a dozen bugs. This is not a security update.
https://www.gpg4win.org/download.html

RogueKiller 12.11.28 adds detections and resolves a device access bug.
https://www.adlice.com/softwares/roguekiller/

Intel-SA-00086 Detection Tool 1.0.0.146 improves accuracy of vulnerability detection.
https://downloadcenter.intel.com/download/27150

Capture Updates

These are unlikely to be of interest to most people.

VideoCacheView 2.98 improves YouTube compatibility. This is not a security update.
https://www.nirsoft.net/utils/video_cache_view.html

XSplit Broadcaster 3.2.1711.2907 resolves several bugs and improves performance. This is not a security update.
https://www.xsplit.com/get/

Converter Updates

These are unlikely to be of interest to most people.

CDex 1.96 improves compatibility. This is not a security update.
http://cdex.mu/?q=download

DVDFab 10.0.7.1 adds support for new encodings, and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

NTLite 1.5.0.5790 adds several new components and settings. This is not a security update.
https://www.ntlite.com/download/

8GadgetPack 25.0 resolves bugs. This is not a security update.
https://8gadgetpack.net/

GoodSync 10.6.8 improves self-maintenance activity to reduce clutter, improve log relevance, and improve performance. Resolves several bugs.This is not a security update.
https://12pd.com/click?goodsync

DesktopOK 4.89 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DMDE 3.4.2.722 improves Apple/macOS support, and resolves several bugs. This is not a security update.
https://dmde.com/

IsMyHdOK 1.31 integrates a new RNG. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

FileLocator Pro 8.2.2751 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

FolderChangesView 2.20 improves concurrency and adds Quick Filter feature. This is not a security update.
https://www.nirsoft.net/utils/folder_changes_view.html

OSForensics 5.2.1003 removes several arbitrary number limits. This is not a security update.
https://www.osforensics.com/download.html

CCleaner 5.38.6357 resolves several bugs, and improves stability. This is a security update.
https://12pd.com/click?ccleaner

ProduKey 1.91 provides cosmetic improvements. This is not a security update.
https://www.nirsoft.net/utils/product_cd_key_viewer.html

Sysmon 6.20 adds the ability to randomize object names to foil malware that use them to detect its presence. This is a security update.
https://live.sysinternals.com/

AccessChk 6.20 resolves bugs. This is a security update.
https://live.sysinternals.com/

Sigcheck 2.60 resolves several bugs. This is a security update.
https://live.sysinternals.com/

Whois 1.20 adds support for registry server redirects. This is not a security update.
https://live.sysinternals.com/

TaskSchedulerView 1.36 adds tray icon support. This is not a security update.
https://www.nirsoft.net/utils/task_scheduler_view.html

TeamViewer 12.0.88438 resolves a reliability bug.
https://www.teamviewer.com/en/download/windows/

WinScan2PDF 3.77 adds output preview, fit/crop support, rotation, default storage location changes. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 3.17 adds support for copying selected object information to clipboard, and improves accuracy of percentages. This is not a security update.
https://antibody-software.com/web/software/software/wiztree-finds-the-files-and-folders-using-the-most-disk-space-on-your-hard-drive/

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 3.0.1.0 resolves several bugs and provides performance improvements. This is not a security update.
https://developer.android.com/studio/index.html

Virtual Machine Updates

These are unlikely to be of interest to most people.

PPSSPP 1.5.4 doesn’t provide a detailed changelog, so should be treated as a security update.
http://ppsspp.org/downloads.html

VirtualBox 5.2.2-119230 resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 8.4.3 resolves dozens of bugs. This is not a security update.
https://drupal.org/download

Joomla 3.8.3 resolves dozens of bugs. This is not a security update.
https://www.joomla.org/

MailEnable Enterprise 10.10 resolves several bugs. This is not a security update.
https://www.mailenable.com/

phpMyAdmin 4.7.6 resolves several bugs. This is not a security update.
https://www.phpmyadmin.net/home_page/news.php

ScreenConnect 6.4.15361.6527 resolves a stability bug. This is not a security update.
https://www.screenconnect.com/Download

SMF 2.0.15 is a security update.
https://download.simplemachines.org/

WordPress 4.9.1 is a security update.
https://wordpress.org/

Contact Form 7 4.9.2 should be treated as a security update.

Email Log 2.2.4 provides license changes. This is not a security update.

NextScripts Social Networks Auto-Poster 4.1.1 resolves several bugs. This is not a security update.

Postie 1.9.14 improves logging. This is not a security update.

Redirection 2.10.1 adds support for multisite and resolves several bugs. This is not a security update.

W3 Total Cache 0.9.6 resolves over a dozen issues, including disabling the anonymous tracking feature by default. This should be treated as a security update.

Widgets on Pages 1.4.0 adds TinyMCE button for widgets. This is not a security update.

WooCommerce 3.2.5 resolves dozens of bugs. This is not a security update.

WP Edit 4.0.2 resolves a couple bugs. This is not a security update.

WP Mail SMTP 1.0.0 adds several email provider integrations and improves GUI. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2017-05-16

Hi, Folks!

It’s not Patch Tuesday, but Apple, Microsoft, Adobe, Google, and more have released updates today.

If you haven’t heard of “WannaCry” then you’re living under a rock. WannaCry is the closest current equivalent to the Code Red worm in the last 15 years. This ransomware uses a known vulnerability for which a patch had been released (three months ago!), to infect computers, encrypt their contents and the contents of network locations, and sell access back to the victim – while also infecting other vulnerable network devices. If you’ve installed your updates within the last three months you’re not vulnerable to the specific network-level vulnerability in SMB that it uses to propagate, but that doesn’t mean you can safely open phishing messages, email attachments or random downloads. The UK NHS was hit hard by this malware primarily because they take almost 6 months to patch their PC hardware that they do support. Some single-purpose devices (MRI machines, for example) are simply never maintained, but are still granted network access. Sigh. Don’t do that.

The vulnerability exploited by WannaCry was first divulged by Shadow Brokers when they released a trove of hacking tools created and used by the NSA. In fact, one of the tools WannaCry utilizes is the same ETERNALBLUE exploit directly from the NSA toolset. This is not a coincidence. These tools were written specifically to be universally effective and able to be repurposed at will for additional access. It should come as no surprise that when a government agency is hacked, the tools they created are released and the public suffers as a result.

If a positive side to this event can exist, it’s that Microsoft actually released a security update for Windows XP to address the vulnerability. Since XP has been End-of-Life for years, this is really surprising.

The lesson everyone should take from this event, but particularly businesses and government agencies, is that the turnaround time for malware authors is much lower than they think. Delaying or even ignoring security updates because “it won’t happen to us” is foolhardy at best and welcomes disaster. You should have sufficient skilled IT staff to be able to fully test and roll out any security updates within days, not months. If that’s not possible, you should at least hire a good PR firm and have the releases prepared in advance so you can spin your incompetence in the news when you are inevitably hacked later.

Okay, back to our regularly scheduled program.

The typical computer should see approximately 300mb of updates. Let’s get started.

Microsoft released updates for Windows and .NET, including Windows XP!

Apple released macOS 10.12.5, Security Update 2017-002, iTunes 12.6.1, Safari 10.1.1, and iCloud for Windows 6.2.1. Use the Apple App Store or Apple Software Update to install the most current versions.

Apple iOS 10.3.2, watchOS 3.2.2 (and 3.2.1), and tvOS 10.2.1 are security updates. Use Settings, General, Updates to install the most current version.

Google Chrome OS 58.0.3029.112 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Internet Updates

One or more of these are likely to be of interest to everyone.

Skype 7.36.0.101 improves quality and resolves several bugs. This version also imposes a requirement for a newer MSVCRT, which may trigger problems on any OS prior to the Windows 10 Creators Update (1703). If you receive an MSVCRT error upon running Skype after updating, download the current version of the MSVCRT.
https://12pd.com/click?skype

BrowsingHistoryView 2.05 adds ability to load history from remote device when full admin rights exist to remote device.
http://www.nirsoft.net/utils/browsing_history_view.html

Media Updates

These are unlikely to be of interest to most people.

iTunes 12.6.1 is a security update. Use Apple Software Update to install the most current version.

Office Updates

One or more of these are likely to be of interest to most people.

Notepad++ 7.4 adds document peeking, bug fixes, and reliability improvements.
https://12pd.com/click?npp

Security Software Updates

One or more of these is likely to be of interest to most people.

Wireless Network Watcher 2.12 improves reliability on devices with multiple wireless network adapters. This is not a security update.
http://www.nirsoft.net/utils/wireless_network_watcher.html

RogueKiller 12.10.9 adds detections. This is not a security update.
http://www.adlice.com/softwares/roguekiller/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 10.0.3.9 adds support for newer protections, incorporates BDInfo. This is not a security update.
http://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

GSmartControl 0.9.0 resolves several bugs, improves reliability and stability, adds newer hardware support, and improves drive type detection. This is not a security update.
http://gsmartcontrol.sourceforge.net/home/index.php/

Everything 1.4.1.873b resolves several bugs, and adds pause/resume capability. This is not a security update.
http://www.voidtools.com/

CCleaner 5.30.6063 improves cleaning, SSD detection, and resolves several bugs. This is not a security update.
https://12pd.com/click?ccleaner

Rufus 2.15 improves compatibility with Windows 10 v1703, updates libraries, resolves several bugs. This should be treated as a security update.
http://rufus.akeo.ie/

WinScan2PDF 3.46 improves hardware support. This is not a security update.
http://www.softwareok.com/?seite=Microsoft/WinScan2PDF

ProcDump 9.0 adds multiple dump sizes, and Kernel Dump process association. This is not a security update.
http://sysinternals.com/

Autoruns 13.71 adds Microsoft HTML Application Host (mshta.exe) as hosting image so it displays the hosted image details, and now doesn’t apply filters to hosting images. This is not a security update.
http://sysinternals.com/

BgInfo 4.22 honors applocker policy for VB scripts specified as the source of field data. This is not a security update.
http://sysinternals.com/

LiveKd 5.62 is now signed with a certificate trusted by Win7. This is not a security update.
http://sysinternals.com/

Process Monitor 3.33 resolves several bugs, and is now signed with certificate trusted by Win7. This is not a security update.
http://sysinternals.com/

Process Explorer 16.21 resolves a bug with VT support, and is now signed with a certificate trusted by Win7. This should be treated as a security update.
http://sysinternals.com/

Web Package Updates

These are likely to be of interest only to web developers.

SMF 2.0.14 is a security update. This version also changes PHP requirements, so if the upgrade will not complete try upgrading PHP first then upgrade SMF.
http://download.simplemachines.org/

TinyMCE 4.6.1 resolves several bugs. This is not a security update.
http://www.tinymce.com/download/

WordPress 4.7.5 is a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/