Updates 2020-10-28

Welcome back, Folks!

It’s not Patch Tuesday, but updates from Microsoft, Apple, Google, Mozilla, and many others have triggered an out-of-cycle update.

This Month in Technology

Hackney Council has been hacked, Dickey’s BBQ has been hacked, Carnival Corp was hacked, a Finland psychotherapy center was hacked and the stolen data is being used to blackmail patientsSonicWall VPN Portal can be easily hacked, there’s yet another Bluetooth vulnerability (in all but the latest Linux kernel), dozens of government networks have been targeted (and some hacked) by a “Russian hacker group” (though it’s hard to believe that the Russians are behind anything anymore), and President Trump’s campaign website was hacked. Any password you can remember is a bad password. Even if you’re the President. Or a multinational security company.

Some nutjobs are still supporting the lockdowns, even though the half-baked science encouraging lockdowns and masks have been proven false again and again, but that won’t stop authoritarians from treating people as terrorists.

Facebook is permabanning users for buying $300 VR hardware Facebook sells. Really. That’s okay, it’s time for VR to abandon Facebook anyway.

An overzealous Apple security feature (XProtect) has blocked access to HP printers, Amazon Music and more. They’re humorously contradicting themselves about security. On the one hand, they advise users to never plug any device into a non-Apple power adapter, and on the other hand they say they’re saving the planet by not including power adapters anymore.

Epic Games founder and chief executive Tim Sweeney observes:
“What’s most disturbing about Apple’s position is that they seem to truly believe they “own” all commerce involving phones they make, characterizing direct payment as theft, smuggling, and even shoplifting. It’s a crazy, misguided view.”

Yes, in June T-Mobile broke the entire US cell network. No, they won’t be punished.

Twitter and Facebook are actively censoring actual news based on false claims of hacking and sensitive information…but even if it were true, they didn’t seem to mind when the target of the hacking was of a different political persuasion. Twitter acknowledges that Joe Biden is a child sex predator. It should go without saying that social networks will never treat everyone the same. The FCC and President Trump have repeatedly asserted that they will be “clarifying” Section 230. Wouldn’t it be better if they just enforced it?

Not to be outdone by mere social media, the RIAA has demonstrated that it has too much power. Google has demonstrated that they can control what the world knows and believes, which has painted them into a corner for a federal antitrust case.

Orca Security has a great write-up about Palo Alto Networks defective (and illegal) pursuit of security-by-obscurity.

Now for the good news:

Energy scavenging may soon be a reality, hopefully it won’t be used to send us back to the 18th century like in the TV series Revolution. Isn’t it time that we pedaled for power?

Let’s Get Busy

Microsoft released the newest build of Windows 10 v2009, which isn’t that different from v2004. It’s another minor “major” update that streamlines several features and improves overall performance.
https://www.microsoft.com/en-us/software-download/windows10

Apple released updates for iOS, iPadOS, watchOS, iTunes, and Apple Music 3.4.0 for Android. These are security updates.

iOS 14.1 is a security update. Use Settings, General, Software Update to install the most current version.

iPadOS 14.1 is a security update. Use Settings, General, Software Update to install the most current version.

watchOS 7.0.3 is a security update. Use your updated iPhone to install the most current version through the Watch app.
https://support.apple.com/en-us/HT204641

Google Chrome OS 86.0.4240.112 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Fedora 33-1.2 adds PARSEC support, improves interoperability and development environment, updated libraries and resolves several bugs. This is not a security update.
https://getfedora.org/en/workstation/download/

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.3.4 improves removal capabilities. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

MS Mouse and Keyboard Center 13.0 adds support for new hardware. This is not a security update.
https://www.microsoft.com/accessories/en-us/downloads/mouse-keyboard-center

Logitech Options 8.34.82 (and 8.34.91 for macOS) resolves several bugs, adds support for new hardware and plugins, and implements the new permissions options for macOS Mojave compatibility. This is not a security update.
https://www.logitech.com/en-us/product/options

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.16.68 is a security update.
https://brave.com/

Google Chrome 86.0.4240.111 is a security update.

Microsoft Edge 86.0.622.56 is a security update.

Firefox 82.0.2 is a security update.

Firefox ESR 78.4.0 is a security update.

Vivaldi 3.4.2066.86 is a security update.
https://vivaldi.com/

Internet Updates

One or more of these are likely to be of interest to everyone.

BrowsingHistoryView 2.45 adds an option to display QR codes for selected URLs. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

curl 7.73.0 resolves over a hundred bugs and adds several new switches, improving help and error handling. This is not a security update.
https://curl.haxx.se/windows/

Dropbox 108.4.453 does not provide a detailed changelog, so should be treated as a security update.
https://www.dropbox.com/

FileZilla Client 3.51.0 resolves several bugs. This is not a security update.
https://filezilla-project.org/

TrueNAS 12.0 is the merger of FreeNAS and TrueNAS to build a much more powerful whole. This major update improves quality, reliability and performance, adds and improves support for new file systems and dataset encryption, improves diagnostics, 2FA, API support, quotas and much more. This is not a security update.
https://www.truenas.com/download-truenas-core

Technitium DNS Server 5.4 resolves several bugs, adds QNAME randomization and PTR zone creation. This is not a security update.
https://technitium.com/dns/

WinSCP 5.17.8 is a security update.
https://winscp.net/eng/index.php

Zoom 5.4.58636.1027 resolves several bugs. This is a security update.
https://zoom.us/

Java 8u271 is a security update.
https://www.java.com/en/download/manual.jsp

Media Updates

These are unlikely to be of interest to most people.

iTunes 12.10.10 is a security update. Use Apple Software Update to get the most current version.

3tene 2.0.7 adds 32-bit screen capture, adjusts transition time, and resolves several bugs. This is not a security update.
https://en.3tene.com/

Picard 2.5.1 resolves dozens of bugs, improves reliability, and adds improved privacy controls. This is not a security update.
https://picard.musicbrainz.org/

Game Updates

These are unlikely to be of interest to most people.

Steam 2020.10.23 is a security update.

PlayStation PS4 8.00 is a security update.
https://www.playstation.com/en-us/support/system-updates/ps4/

Office Updates

One or more of these are likely to be of interest to most people.

LibreOffice 6.4.7 resolves over 70 bugs, including stability and reliability issues. This is not a security update.
https://www.libreoffice.org/

Paint.net 4.2.14 improves performance, adds AV1 support, and resolves several bugs. This is not a security update.
https://www.getpaint.net/

Adobe Creative Cloud Desktop Application 5.3 and 2.2 are security updates.
https://helpx.adobe.com/download-install/kb/creative-cloud-desktop-app-download.html

Adobe InDesign 16.0 is a security update.
https://helpx.adobe.com/security/products/indesign/apsb20-66.html

Adobe Media Encoder 14.5 is a security update.
https://helpx.adobe.com/security/products/media-encoder/apsb20-65.html

Adobe Premiere Pro 14.5 is a security update.
https://www.adobe.com/in/creativecloud/catalog/desktop.html

Adobe Photoshop 21.2.3 and 22.0 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb20-63.html

Adobe After Effects 17.1.3 is a security update.
https://helpx.adobe.com/security/products/after_effects/apsb20-62.html

Adobe Animate 21.0 is a security update.
https://helpx.adobe.com/security/products/animate/apsb20-61.html

Adobe Dreamweaver 21.0 is a security update.
https://helpx.adobe.com/security/products/dreamweaver/apsb20-55.html

Adobe Illustrator 25.0 is a security update.
https://helpx.adobe.com/security/products/illustrator/apsb20-53.html

Marketo 1.4357 is a security update.
https://helpx.adobe.com/security/products/marketo/apsb20-60.html

Magento 2.4.1 and 2.3.6 are security updates.
https://helpx.adobe.com/security/products/magento/apsb20-59.html

Security Software Updates

One or more of these is likely to be of interest to most people.

BelArc Advisor 9.7 doesn’t provide a changelog so should be treated as a security update.
https://www.belarc.com/products_belarc_advisor

RouterPassView 1.90 adds a new display mode including backup files. This is not a security update.
https://www.nirsoft.net/utils/router_password_recovery.html

uBlock Origin 1.30.6 resolves several bugs and adds a click-to-load widget. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

RogueKiller 14.7.4 improves reliability. This is not a security update.
https://www.adlice.com/download/roguekiller/

HTTP Toolkit 1.0.2 updates libraries. This is not a security update.
https://httptoolkit.tech/

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 2021.0.0 is a major update adding several features, updating Templates, Themes, Simplify, Magnify, and the Editor. This is not a security update.
https://download.techsmith.com/snagit/enu/snagit.exe

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 12.0.0.3 resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

CCleaner 5.73.8130 improves license management. This is not a security update.
https://www.ccleaner.com/

TeamViewer 15.11.6 improves RSA key length, allows flashlight while zooming, and resolves a copy/paste notification bug. This is not a security update.
https://www.teamviewer.com/en/download/windows/

Fido 1.17 adds support for the latest Windows 10 build, v2010. This is not a security update.
https://github.com/pbatard/Fido/releases

GoodSync 11.4.1 improves Google Photos FS access, event handling, GsRunner, CCRunner, updates certificate roots, and resolves several bugs. This is not a security update.
https://12pd.com/click?goodsync

NTLite 2.0.0.7705 updates components and compatibility, and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

PointerStick 4.71 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

Rufus 3.12 adds support for the latest Windows 10 build, v2010, SHA-512 digests, improved Windows To Go support, and resolves several bugs. This is not a security update.
https://rufus.ie/en_IE.html

TaskSchedulerView 1.57 adds options to copy contents of clicked cell. This is not a security update.
https://www.nirsoft.net/utils/task_scheduler_view.html

WinScan2PDF 6.13 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

VMMap 3.30 identifies .NET Core 3.0 managed heaps. This is not a security update.
https://live.sysinternals.com/

RAMMap 1.60 adds customizable map colors and a new empty system working sets. This is not a security update.
https://live.sysinternals.com/

Sysmon 12.01 is a security update.
https://live.sysinternals.com/

Developer Updates

These are unlikely to be of interest to most people.

MySQL ConnectorNet 8.0.22 resolves several bugs. This is a security update.
https://dev.mysql.com/downloads/connector/net/

Node.js 14.15.0 resolves several bugs and is now officially in Long Term Support (LTS) status. This is not a security update.
https://nodejs.org/en/

Node.js 15.0.1 is a major update adding several new features and removing others, updating libraries and resolves bugs. This is not a security update.
https://nodejs.org/en/

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.1.16-140961 resolves several bugs. This should be treated as a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Dada Mail 11.12.2 resolves a minor bug. This is not a security update.
http://dadamailproject.com/

phpMyAdmin 4.9.7 and 5.0.4 resolve 2FA bug and PHP compatibility, and resolve several other bugs. This is not a security update.
https://www.phpmyadmin.net/

ScreenConnect 20.11.1385.7587 resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

Nextcloud Server 20.0.1 resolves over 60 bugs and improves performance, reliability and privacy. This is not a security update.
https://nextcloud.com/

Akismet 4.1.7 improves integration. This is not a security update.

Contact Form 7 5.3 resolves several bugs. This is not a security update.

myStickymenu 2.4.7 resolves several bugs. This is not a security update.

NextScripts Social Networks Auto-Poster 4.3.19 improves compatibility and resolves several bugs. This is not a security update.

Redirection 4.9.1 resolves logging and database upgrade bugs. This is not a security update.

Social Post Feed 2.17.1 resolves several bugs. This is not a security update.

WooCommerce 4.6.1 resolves several bugs. This is not a security update.

WP Mail SMTP 2.5.1 adds password encryption, improves Gmail compatibility, and resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2020-08-11

Welcome back, Folks!

Today is Patch Tuesday for August 2020.

This Month in Technology

I pride myself in my sarcastic wit and infinite patience, but these days I spend so much time shaking my head in such shame for humanity that I’m afraid I’m going to get whiplash.

I’m trying to keep on the topic of technology, but it’s hard when that very technology is being used to silence, stalk, abuse, and defame so many. What’s worse is that when they’re caught they just throw money at those investigating them in order to escape culpability.

Cancel Culture was obvious to authors in the 1930s, but has been ignored over the last decade because those who speak up are themselves cancelled. Richard Stallman explains his position on digital currencies being evil, and how technological tracking will inevitably be used for cancel culture. (Heck, even Bill Maher opposes cancel culture!) Sadly, it may be too late to stop at this point, since cancel culture has now escaped planet Earth to infect the cosmos.

Canon was hacked, Avon was hacked, Intel was hackedGarmin was hacked, Walmart was hacked and is being sued under the CCPA over it, Capital One was finally punished for being hacked, Dave was hackedLedger was hacked, exposing a million accounts and emails, Tor has been hacked (the vulnerabilities have actually been known for *years*), nearly a thousand enterprise VPN servers have been hacked, 62,000 NAS devices have been hacked and infected, and Twitter was hacked (by a Florida teen who exposed Twitter’s “nonexistent” censorship tools). Is it any wonder Twitter was hacked since it took them almost two years to patch an app vulnerability?

A dozen VPN providers used an unprotected and insecure storage to harvest details of over twenty million (20,000,000) users, including payment details and traffic history.

Google is harvesting data from third parties to build rival apps, but it doesn’t stop there – they also “accidentally” enabled their Google Home smart devices to listen 24/7 and record their environments.

A TeamViewer vulnerability allows anyone running a version older than those released *yesterday* to be hacked, and of the 79 Netgear router models that have known security vulnerabilities, Netgear has announced they won’t patch 45 of them – including several AC models that are only 3 years old, and Snapdragon chip vulnerabilities put over a billion Android devices at risk. On the subject of defective hardware, BadPower can light you up!

Microsoft is flagging HOSTS files used to block unwanted telemetry as malicious. Evil extensions continue to be evil. AT&T “accidentally” tells all their customers they have to replace their brand new phones in order to continue to use cell service, Humana (Tricare) “accidentally” told 600,000 US military veterans that they were infected with COVID-19.

Advertisements are evil privacy-erasing monsters, but Ad URLs are worse.

Now for the good(?) news:

Recently, the lockdowns are responsible for more suicides and deaths by overdose than COVID-19. That’s gotta be a silver lining somehow, right?

Let’s Get Busy

Now back to our regularly scheduled program.

Patch Tuesday this month is huge. The typical computer should see roughly 2 GB in updates today. Let’s get started.

Microsoft released updates for Windows, Edge, .NET, Internet Explorer, Office, Servicing Stack, and MSRT (~1.3 GB). This includes security updates. A reboot is required.

Apple released updates for macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra, Safari 13.1.2, Xcode 11.6, iCloud for Windows 11.3, iCloud for Windows 7.20, iTunes 12.10.8 for Windows. This includes security updates. Use Apple Software Update to install these updates. A reboot is required.

iOS 13.6 and 12.4.8, and iPadOS 13.6 are security updates. Use Settings, General, Software Update to install the most current update.

watchOS 6.2.8 and 5.3.8 are security updates. Use the Watch app on your iPhone to install the most current version.

tvOS 13.4.8 is a security update. Use System, Software Update to install the most current version.

Adobe Flash Player 32.0.0.414 is a security update.
Win: https://12pd.com/click?flash
Win: https://12pd.com/click?flashie
Mac: https://12pd.com/click?flashmac

Google Chrome OS 84.0.4147.110 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Don’t forget to check your mobile devices, too! Many updates will also apply to your tablet, phone, kindle or television – so check your device-appropriate App Store and install updates.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

The release of macOS Catalina (10.15) means that macOS Sierra (10.12) and older are no longer supported. If you can not install at least macOS High Sierra (10.13) on your Mac then you should immediately remove it from the Internet and use it offline only. It will no longer receive patches or updates and can now no longer be secured.

The now-current release of the Windows 10 (2004) is a huge (about 25% larger than any prior build) so will take a long time to download on slower connections. Windows 10 pushes you to get the latest Windows 10 release every 6 months. If you don’t let it finish and you’re on a slow connection, this process kill your Internet performance forever. If you don’t have the bandwidth to download the bits, I’m happy to provide loaner USB drives to our local clients, or, if you prefer to have me mail it to you please contact me for information.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need or use, reducing the attack surface.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.2.8 resolves issues with NVIDIA removal. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.11.104 is a security update. Use Menu, Help, About to install the most current version.
https://brave.com/

Firefox 79.0 is a security update. Use Menu, Help, About to install the most current version

Firefox ESR 68.11.0 is a security update. Use Menu, Help, About to install the most current version.

Google Chrome 84.0.4147.125 is a security update. Use Menu, Help, About to install the most current version.

Microsoft Edge 84.0.522.59 is a security update. Use Menu, Help, About to install the most current version.

Vivaldi 3.2.1967.41 is a security update. Use Menu, Help, About to install the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Thunderbird 78.1.0 is a security update. Direct updates are disabled for 78.x so you will need to download and install the update from the Thunderbird website:
https://www.thunderbird.net/en-US/

Internet Updates

One or more of these are likely to be of interest to everyone.

BrowsingHistoryView 2.41 adds support for local /cfg file. This is not a security update.
https://www.nirsoft.net/utils/browsing_history_view.html

Dropbox 103.4.383 doesn’t provide a detailed changelog, so should be treated as a security update.
https://www.dropbox.com/

FileZilla Client 3.49.1 resolves a cosmetic bug. This is not a security update.
https://filezilla-project.org/

FreeFileSync 11.0 improves Google Drive sync and backups, adds WSL symlink support, and resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Npcap 0.9996 resolves several bugs, including stability/crash problems. This is not a security update.
https://nmap.org/npcap/

Technitium DNS Server 5.0.2 resolves several bugs and updates libraries. This is not a security update.
https://technitium.com/dns/

WinSCP 5.17.7 is a security update.
https://winscp.net/eng/index.php

Zoom 5.2.42619.0804 resolves several bugs, improves compatibility and hardware support, and adds several new features. This is not a security update.
https://zoom.us/

Line 9.6.0 adds effects stickers. This is not a security update.
http://line.me/update

Media Updates

These are unlikely to be of interest to most people.

3tene 2.0.2 updates libraries, improves compatibility, and resolves several bugs. This is not a security update.
https://en.3tene.com/

iTunes 12.10.8 is a security update. Use Apple Software Update to install the most current version.

darktable 3.2.1 resolves almost 100 bugs, improves lighttable, CSS styles, Color Picker, preferences, and many more. This is not a security update.
https://www.darktable.org/install/

Picard 2.4.1 resolves a dozen bugs and adds support for new formats, improves functions and stability. This is not a security update.
https://picard.musicbrainz.org/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 20.012.20041 is a security update. Use Menu, Check for updates to get the most current version.

Adobe Lightroom 9.3 is a security update.
https://helpx.adobe.com/security/products/lightroom/apsb20-51.html

Magento 2.4.0 and 2.3.5-p2 are security updates.
https://helpx.adobe.com/security/products/magento/apsb20-47.html

Adobe Reader Mobile 20.3 is a security update.
https://helpx.adobe.com/security/products/reader-mobile/apsb20-50.html

Adobe Prelude 9.0.1 is a security update.
https://helpx.adobe.com/security/products/prelude/apsb20-46.html

Adobe Photoshop 20.0.10 and 21.2.1 are security updates.
https://helpx.adobe.com/security/products/photoshop/apsb20-45.html

Adobe Bridge 10.1.1 is a security update.
https://helpx.adobe.com/security/products/bridge/apsb20-44.html

Atom 1.50.0 resolves several bugs and updates libraries. This is not a security update.
https://atom.io/

Blender 2.83.4 resolves dozens of bugs and improves performance. This is not a security update.
https://www.blender.org/download/

LibreOffice Still 6.4.5 is a major update to the stable version of LibreOffice. This build resolves over 100 bugs and improves stability over the previous beta “Fresh” line. This is not a security update.
https://www.libreoffice.org/

LibreOffice Fresh 7.0.0 is beta software. While this is a major update to the beta version of LibreOffice, nearly 200 bugs were resolved over the last few days so you should only use this if you are comfortable using beta software that is very likely to crash. This is not a security update.
https://www.libreoffice.org/

Notepad++ 7.8.9 resolves 9 bugs that improve cosmetics after the recent updates. This is not a security update.
https://notepad-plus-plus.org/

Paint.net 4.2.13 resolves several bugs and improves low-quality exports. This is not a security update.
https://www.getpaint.net/

Security Software Updates

One or more of these is likely to be of interest to most people.

DNSQuerySniffer 1.81 adds local /cfg file support and adds Select/Deselect All to column settings. This is not a security update.
https://www.nirsoft.net/utils/dns_query_sniffer.html

Gpg4win 3.1.12 resolves several bugs and improves reliability. This is a security update.
https://www.gpg4win.org/download.html

Hashcat 6.1.1 resolves several bugs and adds support for new algorithms. This is not a security update.
https://hashcat.net/hashcat/#downloadlatest

RogueKiller 14.6.3 updates core engine and resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

uBlock Origin 1.29.0 resolves several bugs. This is not a security update.
https://github.com/gorhill/uBlock/releases/latest

Capture Updates

These are unlikely to be of interest to most people.

SnagIt 2020.1.4 improves cosmetic controls and resolves several bugs. This is not a security update.
https://download.techsmith.com/snagit/enu/snagit.exe

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 11.1.0.1 adds support for new encodings, adds output configuration exports, batch reporting, and new output profiles. This is not a security update.
https://www.dvdfab.cn/download.htm

MakeMKV 1.15.2 updates muxer to the latest matroska specification, resolves several bugs and adds drive speed control and standalone sdftool. This is not a security update.
https://www.makemkv.com/download/

PDF Creator 4.1.2 resolves a COM interface error and several other bugs. This is not a security update.
https://www.pdfforge.org/pdfcreator

Utility Updates

These are unlikely to be of interest to most people.

1Password for Windows 7.6.780 resolves several bugs and improves cosmetics. This is a security update.
https://1password.com/downloads/windows/

Bitwarden 1.20.1 resolves a crash bug and adds support for Windows Hello or TouchID on macOS to unlock the vault. This is not a security update.
https://bitwarden.com/

CCleaner 5.70.7909 improves compatibility, but is still detected as a “potentially unwanted program” by Windows Defender (and with all the problems CCleaner has had in the last couple years, they could be right).
https://www.ccleaner.com/

CPU-Z Installer 1.93 adds support for newer hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

CurrPorts 2.62 adds ‘Copy Remote Address’ option. This is not a security update.
https://www.nirsoft.net/utils/cports.html

Dell Command Update 3.1.3 improves reliability, compatibility, and stability. This is not a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

DesktopOK 7.71 resolves several bugs and adds HTTPS updates. This is a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Eraser 6.2.0.2990 adds exFAT support but doesn’t have a changelog. This should be treated as a security update.
https://eraser.heidi.ie/download/

Etcher 1.5.102 updates libraries, and resolves several bugs. This is not a security update.
https://www.balena.io/etcher/

Everything 1.4.1.988 reworks some Lite behavior, ensures volumes are mounted before use, and resolves several bugs. This is not a security update.
https://www.voidtools.com/

FolderChangesView 2.32 adds local /cfg support. This is not a security update.
https://www.nirsoft.net/utils/folder_changes_view.html

GoodSync 11.2.8 resolves several bugs and improves reliability. This is not a security update.
https://www.goodsync.com/

Homedale 1.88 adds OWE encryption support. This is not a security update.
https://www.the-sz.com/products/homedale/

IsMyHdOK 2.21 vastly improves SSD support. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/IsMyHdOK

NTLite 2.0.0.7596 resolves several bugs and adds new settings options. This is not a security update.
https://www.ntlite.com/download/

PointerStick 4.25 resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.20.1 resolves several bugs. This is a security update.
https://github.com/microsoft/PowerToys/releases/latest

RoboForm 8.9.1 adds import from Edge and resolves several bugs. This is not a security update.
https://www.roboform.com/

Sysmon 11.11 fixes a bug that prevented USB media from being ejected. This should be treated as a security update.
https://live.sysinternals.com/

TaskSchedulerView 1.56 improves compatibility for devices where the Remote Registry service is disabled. This is not a security update.
https://www.nirsoft.net/utils/task_scheduler_view.html

TeamViewer 15.8.3 is a security update.
https://www.teamviewer.com/en/download/windows/

TraceRouteOK 1.77 resolves several bugs and improves GUI. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/TraceRouteOK

USBDeview 3.00 adds several new timestamp columns that can be read when running elevated, and renames the other timestamp fields. This is not a security update.
https://www.nirsoft.net/utils/usb_devices_view.html

USB Oblivion 1.13.0.0 adds ability to clean the Partition Diagnostic journal. This is not a security update.
https://www.cherubicsoft.com/en/projects/usboblivion

WifiInfoView 2.62 improves local /cfg file behavior. This is not a security update.
https://www.nirsoft.net/utils/wifi_information_view.html

WinScan2PDF 5.88 improves compatibility with multifunction devices. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

Developer Updates

These are unlikely to be of interest to most people.

ADB 30.0.4 resolves several bugs and improves fastboot. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

AutoHotkey 1.1.33.02 resolves several bugs. This is not a security update.
https://www.autohotkey.com/download/

Node.js 14.8.0 resolves dozens of bugs and updates libraries. This should be treated as a security update.
https://nodejs.org/en/

Node.js v12 12.18.3 updates libraries and resolves dozens of bugs. This should be treated as a security update.
https://nodejs.org/en/

Redemption 5.24.0.5736 adds several new methods and properties, and resolves several bugs. This is not a security update.
http://www.dimastr.com/redemption/

Web Package Updates

These are likely to be of interest only to web developers.

Dada Mail 11.11.0 adds Scheduling and validation, makes Open Discussion Lists always available, significantly improves active troubleshooting, and resolves compatibility with StopForumSpam. This is not a security update.
http://dadamailproject.com/

Docker Desktop 2.3.0.4 improves cross-platform compatibility, installation troubleshooting, and WSL 2 support. This is not a security update.
https://www.docker.com/products/docker-desktop

Drupal 9.0.3 resolves over 100 bugs. This is not a security update.
https://drupal.org/download

HumHub 1.6.2 resolves dozens of bugs. This is not a security update.
https://www.humhub.com/en/download

MailEnable 10.31 improves logging, and resolves over 30 bugs. This is not a security update.
https://www.mailenable.com/

Nextcloud Server 19.0.1 resolves dozens of bugs. This is not a security update.
https://nextcloud.com/

OpenCart 3.0.3.6 adds PayPal extensions and removes Openbay Pro. This is not a security update.
https://www.opencart.com/

OpenPetra 2020.06 adds consent storage for compatibility with legal requirements,
https://www.openpetra.org/

ScreenConnect 20.8.29574.7520 resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

Autoptimize 2.7.6 resolves several bugs. This is not a security update.

BuddyPress 6.2.0 resolves several bugs. This is not a security update.

Contact Form 7 5.2.1 resolves several bugs. This is not a security update.

Social Post Feed 2.16 resolves a couple bugs. This is not a security update.

Register IP – Multisite 1.8.2 resolves a cosmetic bug and improves compatibility. This is not a security update.

NextScripts Social Networks Auto-Poster 4.3.16 improves compatibility and resolves two bugs. This is not a security update.

W3 Total Cache 0.14.3 resolves several bugs. This is not a security update.

WooCommerce 4.3.2 resolves several bugs. This is not a security update.

WP Add Custom CSS 1.1.6 updates code editor and improves compatibility. This is not a security update.

WordPress Zero Spam 4.9.12 is the latest in a series of fixes to the 4.0 rewrite. Over a hundred changes and many new features and controls are added. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2020-06-03

Welcome back, Folks!

It’s not Patch Tuesday, but updates from Microsoft, Apple, Google, Mozilla, and many others have triggered an out-of-cycle update.

This Month in Technology

It took Apple over a month to resolve a security issue in their custom OAuth implementation, which would provide app-level access to any site that used Sign in with Apple given only an email address. Facebook and Google both suffered similar XSS issues recently, as did a very popular WordPress plugin.

Not accepting vulnerability reports doesn’t mean the vulnerabilities don’t exist, Apple. Even after vowing now to, Apple is still recording everything you say and do as long as you have Siri enabled.

It still surprises me that people that don’t read the documentation and license agreements still feel the need to sue over their failure to understand how software works. For anyone reading this years from now, browsers load web pages. “Incognito” mode (or any other privacy mode) simply prevents your data from being shared IN THE BROWSER between different sessions. It otherwise does not prevent any websites from operating exactly as they would if you were loading the web page in any other browser. As always, don’t do anything online that you don’t want to be tracked to you. Period.

Even so, eBay, Citibank, TD Bank, Ameriprise, Chick-fil-a, Equifax, and many more websites are performing port scans of visitors computers. If you’re concerned about your privacy, imagine the power companis like eBay and Equifax would have if they collected and consolidated details about every remote support platform installed and used by every visitor to their websites. We’re talking about hundreds of millions of people relying on companies that don’t have the best track record of keeping data safe in the first place.

Veracode reports that about 70% of all mobile and desktop applications contain open-source bugs. This reminds me of one of my favorite computer quotes: Every non-trivial program contains at least one bug. Every non-trivial program can be simplified by at least one line of code. The conclusion of the last two laws: Every non trivial program can be simplified to one line of code, and it will contain a bug.

A widely used EU Cookie Consent image is being used to distribute malware. Directly linking to third-party scripts and images has some serious long-term drawbacks.

As was expected by anyone that can math or understand science, suicide (as a result of the government lockdown) has killed more in California than the plandemic COVID-19. This is, of course, after churches are being burned to the ground for daring to try to serve the same people that currently frequent Walmart, Target and Lowes.

The Spectra exploit demonstrates just how easy it’s going to be to abuse the GACT/Contact Tracing services on many devices.

Now for the good news:

Windows 10 v2004 has been released. Make sure you’ve installed v1909 recently so you won’t be forced into the new build before they work out the bugs. I don’t see a lot of differences between v2004 and v1909 that most people would benefit from, anyway, but these releases tend to take a couple months to work out most of the bugs. For example, many Windows policies are erased during the upgrade which can result in local accounts being forced into using inescapable Microsoft accounts for users that don’t understand that “not now” is an option.

Let’s Get Busy

Apple released updates for macOS Catalina 10.15.5, macOS Catalina 10.15.5 Supplemental Update, Security Update 2020-003 Mojave, Security Update 2020-003 High Sierra, Windows Migration Assistant 2.2.0.0, iCloud for Windows 7.19, iCloud for Windows 11.2, Safari 13.1.1, Xcode 11.5, iOS 13.5.1, iPadOS 13.5.1, tvOS 13.4.6, watchOS 5.3.7, watchOS 6.2.6, and iTunes 12.10.7. These are security updates.

iOS 13.5.1 and 12.4.7 are security updates. Use Settings, General, Software Update to install the most current version. This version also adds the Orwellian contact tracing feature at the system level. While “disabled” by default, you may validate that it is disabled in Settings, Privacy, Health, COVID-19 Exposure Logging, and turn off Exposure Logging.

iPadOS 13.5.1 is a security update. Use Settings, General, Software Update to install the most current version.

tvOS 13.4.6 is a security update. Use Settings, General, Updates to install the most current version.

watchOS 5.3.7 and 6.2.6 are security updates. Use your updated iPhone to install the most current version through the Watch app.
https://support.apple.com/en-us/HT204641

Google has released security updates for Android 9 and 10 which will gradually be published by individual vendors and available to you in the coming weeks. This version also adds the Orwellian contact tracing feature. Disabling Location and Bluetooth will disable the current version of contact tracing.

Google Chrome OS 83.0.4103.77 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.2.5 resolves an AMD audio bug. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Intel Driver and Support Assistant 20.6.22 improves OEM device support, performance and resolves several bugs. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Logitech Options 8.20.329 adds support for Edge and resolves several bugs. This is not a security update.
https://www.logitech.com/en-us/product/options

nVidia 446.14 improves VRSS in Onward and resolves several stability, performance, and battery life issues. This is not a security update.
https://www.nvidia.com/Download/index.aspx?lang=en-us

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.9.76 is a security update. Use Menu, Help, About to install the most current version.
https://brave.com/

Google Chrome 83.0.4103.97 is a security update. Use Menu, Help, About to install the most current version.

Microsoft Edge 83.0.478.44 is a security update. Use Menu, Help, About to install the most current version.
https://www.microsoft.com/en-us/edge/business/download

Firefox 77.0 and 77.0.1 are security updates. Use Menu, Help, About to install the most current version.

Firefox ESR 68.9.0 is a security update. Use Menu, Help, About to install the most current version.

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.7.8 is a security update.
https://getmailspring.com/

OutlookAttachView 3.40 changes the Image Preview feature to Preview Pane which will show other attachment types than images. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Internet Updates

One or more of these are likely to be of interest to everyone.

Trillian 6.3.0.5 resolves @mentions. This is not a security update.
https://www.trillian.im/

Trillian Mac 6.3.0.3 resolves a tooltip bug and removes some unused entitlements. This is not a security update.
https://www.trillian.im/

FileZilla Client 3.48.1 is not a security update.
https://filezilla-project.org/

FreeFileSync 10.24 resolves several bugs, improves compatibility, adds new macros and improves error handling. This is not a security update.
https://www.freefilesync.org/download.php

Zoom 5.0.26213.0602 resolves several bugs, enables GIPHY, improves privacy controls and admin controls, improves unmute behavior, and adds waiting room ringtone. This is not a security update.
https://zoom.us/

WinSCP 5.17.6 resolves several bugs. The installation package is a security update.
https://winscp.net/eng/index.php

Media Updates

These are unlikely to be of interest to most people.

iTunes 12.10.7 is a security update. Use Apple Software Update to install the most current version.

Game Updates

These are unlikely to be of interest to most people.

Steam 2020.06.01 adds “Play Next”, direct IP connectivity for Remote Play, P2P improvements, and resolves several bugs. This is not a security update.

PlayStation PS4 7.51 improves performance. This is not a security update.
https://www.playstation.com/en-us/support/system-updates/ps4/

Office Updates

One or more of these are likely to be of interest to most people.

Adobe Reader DC 20.009.20067 resolves several stability and reliability issues. This is not a security update. Use Help, Check for updates to get the most current version.

Atom 1.47.0 updates libraries and resolves several bugs. This is not a security update.
https://atom.io/

Audacity 2.4.1 resolves several bugs. This is not a security update.
https://www.fosshub.com/Audacity.html

LibreOffice Fresh 6.4.4 resolves nearly 100 bugs. This is not a security update. Be advised that “Fresh” is the beta version and should be avoided by most people.
https://www.libreoffice.org/

Lightworks NLE 2020.1 resolves hundreds of bugs and adds several new features. This is not a security update.
https://www.lwks.com/

Paint.net 4.2.12 resolves several bugs and improves metadata export between formats. This is not a security update.
https://www.getpaint.net/

MyPaint 2.0.1 resolves several bugs, including a repetitive load image quality loss bug. This is not a security update.
https://github.com/mypaint/mypaint/releases/latest

Security Software Updates

One or more of these is likely to be of interest to most people.

RogueKiller 14.5.0 updates the RKSvc, core engine, and resolves several bugs. This is not a security update.
https://www.adlice.com/download/roguekiller/

uBlock Origin 1.27.10 resolves several bugs. This is not a security update.

Capture Updates

These are unlikely to be of interest to most people.

ScreenToGif 2.24.2 resolves FFmpeg compatibility. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 11.0.8.9 adds support for new encodings and resolves several bugs. This is not a security update.
https://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

DesktopOK 7.27 adds delete confirmation. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Easy2Boot 2.03 resolves several bugs and updates libraries. This is not a security update.
https://www.fosshub.com/Easy2Boot.html

Etcher 1.5.96 updates libraries and resolves several bugs. This should be treated as a security update.
https://www.balena.io/etcher/

GoodSync 11.2.0 improves compatibility and stability. This is not a security update.
https://12pd.com/click?goodsync

MPI Tool Kit 0.099 doesn’t provide a changelog so should be treated as a security update.
https://www.fosshub.com/Easy2Boot.html

MS ISO Downloader 8.37 adds images for developer and insider releases of Win10 build 19628, Office 2016/2019 for Mac, and resolves accessibility issues. This is not a security update.
https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool

PointerStick 4.11 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Freeware/PointerStick

PowerToys 0.18.1 adds Run and Keyboard manager, and resolves several bugs. This is not a security update.
https://github.com/microsoft/PowerToys/releases/latest

TeamViewer 15.6.7 improves performance of multi-participant sessions, allows disabling the Outlook add-in during installation, and resolves several bugs. This is not a security update.
https://www.teamviewer.com/en/download/windows/

WakeMeOnLan 1.86 updates the internal MAC address database. This is not a security update.
https://www.nirsoft.net/utils/wake_on_lan.html

WinScan2PDF 5.41 improves detection of multi-function devices. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

WizTree 3.33 resolves network drive access issues, improves export/import accuracy, and resolves several bugs. This is not a security update.
https://antibody-software.com/web/software/software/wiztree-finds-the-files-and-folders-using-the-most-disk-space-on-your-hard-drive/

ControlMyMonitor 1.26 now displays an error code if unable to parse settings from the display. This is not a security update.
https://www.nirsoft.net/utils/control_my_monitor.html

Cygwin 3.1.5 adds support for WSL symlinks and resolves several bugs. This is not a security update.
https://cygwin.com/

DesktopOK 7.41 resolves installation and removal bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

DevManView 1.67 adds an option to uninstall the selected device. This is not a security update.
https://www.nirsoft.net/utils/device_manager_view.html

FileLocator Pro 8.5.2946 resolves several bugs. This is not a security update.
https://www.mythicsoft.com/filelocatorpro/download

NetworkInterfacesView 1.21 adds Interface LUID column. This is not a security update.
https://www.nirsoft.net/utils/network_interfaces.html

Bitcoin 0.20.0 improves reliability and stability, removes dependency on OpenSSL, and resolves several bugs. This is not a security update.
https://bitcoin.org/en/download

NTLite 1.9.0.7490 adds several new setting controls and resolves several bugs.
https://www.ntlite.com/download/

WinScan2PDF 5.51 improves translations. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

Windows 10 Media Creation Tool v2004 is now available. This is not a security update.
https://www.microsoft.com/en-us/software-download/windows10

Developer Updates

These are unlikely to be of interest to most people.

ADB 30.0.0 adds support for wireless pairing, incremental APK installation, client-side support for compression of various commands with Android 11, and improves performance. This is not a security update.
https://developer.android.com/studio/releases/platform-tools

Inno Setup 6.0.5 is a security update.
https://www.jrsoftware.org/isdl.php

Node.js 14.4.0 resolves dozens of bugs. This is a security update.
https://nodejs.org/en/

Node.js 12.18.0 is a security update.
https://nodejs.org/en/

Android Studio 4.0.0.16 is a major update and adds several new features and improvements. This is not a security update.
https://developer.android.com/studio

SQLite 3.32.1 is a security update.
https://www.sqlite.org/download.html

TortoiseSVN 1.14.0 resolves several bugs. This is not a security update.
https://tortoisesvn.net/downloads.html

Virtual Machine Updates

These are unlikely to be of interest to most people.

VirtualBox 6.1.8-137981 resolves several bugs. This is not a security update.
https://www.virtualbox.org/wiki/Downloads

Web Package Updates

These are likely to be of interest only to web developers.

Drupal 8.9.0 is the final minor build of the 8.x series and updates libraries and resolves several bugs. Drupal 8.8.6 and 8.7.14 are security updates.
https://drupal.org/download

HumHub 1.5.2 resolves over 25 bugs. This is not a security update.
https://www.humhub.com/en/download

Nextcloud Server 19.0.0 adds document collaboration to video chats, password-less login, performance improvements, guest groups and more. This should be treated as a security update.
https://nextcloud.com/

Joomla 3.9.19 is a security update.
https://www.joomla.org/

phpList 3.5.4 is a security update.
https://www.phplist.org/

ScreenConnect 20.5.28493.7445 resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

Autoptimize 2.7.2 resolves several bugs. This is a security update.

BuddyPress 6.0.0 is a major update adding several new features and resolving many bugs. This is a security update.

Contact Form 7 5.1.9 resolves several bugs. This is not a security update.

myStickymenu 2.4.1 is a cosmetic update. This is not a security update.

Postie 1.9.52 resolves a category parsing bug. This is not a security update.

WooCommerce 4.2.0 resolves dozens of bugs. This is not a security update.

bbPress 2.6.5 doesn’t provide a changelog so should be treated as a security update.

Redirection 4.8 resolves two minor bugs and adds importer. This is not a security update.

Social Post Feed 2.15.1 adds several new features. This is not a security update.

Theme My Login 7.1 adds a new dashboard action, improves performance and resolves several bugs. This is not a security update.

W3 Total Cache 0.14.1 resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2020-04-30

We just had to get one last update cycle in for “the April that would never end.”

It’s not Patch Tuesday, but updates to OpenSSL have prompted security updates for almost every browser as well as application updates to many others have triggered an out-of-cycle update.

This Month/Week in Technology

If you can’t trust the CDC not to taint the tests, you can’t trust the SBA with your privacy in their loan process, you can’t trust Apple with your data, you can’t trust your “home automation” to not expose your entire home to hackers, you can’t trust the CIA not to abuse their authority in the mainstream media and academia, you can’t trust the FBI to follow their own rules when making requests of the secret FISA courts, you *really* can’t trust your antivirus software not to put you at even greater risk of exploitation, you can’t trust anyone not to reuse passwords, and you can’t trust advertising publishers to keep their ad platforms safe for their target audience, then why should you ever even consider giving Google and Apple 24/7, permanent, extensive monitoring of everywhere you go and everyone you ever have contact with? I don’t. Even if Apple and Google were above reproach (and they’re not), the inevitable abuse by any platform like this makes Orwell’s worst dreams look tame in comparison.

Now for the good news:

Intel has finally opened up their graphic drivers so you can use them on OEM hardware.

Let’s Get Busy

Apple released iOS 13.4.1 for iPhone SE (2nd generation) and watchOS 6.2.1 for Apple Watch Series 1 and 2. These are security updates. Use Settings, General, Software Update to install the most current version.

Fedora 32-1.6 provides several new features, now uses nftables by default, improves regular maintenance routines, and updates libraries. This is a security update.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.2.4 adds ability to remove only NVCP and resolves several bugs. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Intel Driver and Support Assistant 20.4.17 resolves several bugs. This is not a security update.
https://www.intel.com/p/en_US/support/detect

Browser Updates

One or more of these are likely to be of interest to everyone.

Brave 1.8.86 is a security update. Use Menu, Help, About to install the most current version.

Google Chrome 81.0.4044.129 is a security update. Use Menu, Help, About to install the most current version.

Microsoft Edge 81.0.416.68 is a security update. Use Menu, Help, About to install the most current version.

Vivaldi 3.0.1874.33 is a security update. Use Menu, Help, About to install the most current version.
https://vivaldi.com/

Email Updates

One or more of these are likely to be of interest to everyone.

Mailspring 1.7.6 resolves several bugs. This is not a security update.
https://getmailspring.com/

OutlookAttachView 3.35 adds option to control Enter Key Action. This is not a security update.
https://www.nirsoft.net/utils/outlook_attachment.html

Internet Updates

One or more of these are likely to be of interest to everyone.

FileZilla Client 3.48.0 is a security update.
https://filezilla-project.org/

FreeFileSync 10.23 resolves several bugs. This is not a security update.
https://www.freefilesync.org/download.php

Google Earth 7.3.3 improves Street View, plus code support, and resolves several bugs. This is a security update.
https://earth.google.com/

WinSCP 5.17.5 is a security update.
https://winscp.net/eng/index.php

Zoom 5.0.23502.0430 improves encryption, abuse reporting, privacy controls, and resolves several bugs. This is a security update.
https://zoom.us/

Media Updates

These are unlikely to be of interest to most people.

VLC Media Player 3.0.10 is a security update.
https://www.videolan.org/vlc/

Game Updates

These are unlikely to be of interest to most people.

Steam 2020.04.28 resolves several bugs. This is not a security update.
https://www.steampowered.com/platform/update_history/index.php?skin=0&id=0

Office Updates

One or more of these are likely to be of interest to most people.

LibreOffice 6.3.6 resolves 80 bugs. This is not a security update.
https://www.libreoffice.org/

Notepad++ 7.8.6 resolves several bugs. This is not a security update.
https://notepad-plus-plus.org/

Illustrator 24.1.2 is a security update.
https://www.adobe.com/creativecloud/catalog/desktop.html

Adobe Bridge 10.0.4 is a security update.
https://www.adobe.com/products/bridge.html

Security Software Updates

One or more of these is likely to be of interest to most people.

OpenSSL 1.1.1g is a security update.

RogueKiller 14.4.1 is a security update.
https://www.adlice.com/download/roguekiller/

Capture Updates

These are unlikely to be of interest to most people.

ScreenToGif 2.23.2 resolves a couple minor bugs. This is not a security update.
https://github.com/NickeManarin/ScreenToGif/releases/latest

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 11.0.8.6 adds support for new encodings, improves upscaling and enlarger. This is not a security update.
https://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

Dell Command Update 3.1.2 is a security update.
https://www.dell.com/support/article/us/en/04/sln311129/dell-command-update?lang=en

RoboForm 8.7.0 resolves several bugs. This is not a security update.
https://12pd.com/click?rf

1Password for Windows 7.4.767 resolves several bugs. This is a security update.
https://1password.com/downloads/windows/

DesktopOK 7.01 adds command-line support, mapping support for alt-drag, and resolves several bugs. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

Easy2Boot 2.02 updates libraries, dependencies, and resolves a bug in Make USB. This is not a security update.
https://www.fosshub.com/Easy2Boot.html

Etcher 1.5.83 adds workflows to Flash from URL and improves the cosmetics. This is not a security update.
https://www.balena.io/etcher/

GoodSync 11.1.6 adds RDC tunneling support, explorer actions, account management improvements, and resolves several bugs. This is not a security update.
https://12pd.com/click?goodsync

MS ISO Downloader 8.35 adds support for new Windows, Office, and Dell images. This is not a security update.
https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool

PSAppDeploy 3.8.1 adds Repair as action type, execute-process-as-user, several new features, compatibility improvements and bug fixes. This is not a security update.
https://psappdeploytoolkit.com/

Rufus 3.10 improves compatibility, device detection, updates drivers, and resolves several bugs. This is not a security update.
https://rufus.ie/en_IE.html

TeamViewer 15.5.3 adds message search, conditional access servers for fallback options, and resolves several bugs. This is not a security update.
https://www.teamviewer.com/en/download/windows/

WinScan2PDF 5.31 improves compatibility. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

CPU-Z 1.92 adds support for new hardware. This is not a security update.
https://www.cpuid.com/softwares/cpu-z.html

NTLite 1.9.0.7455 adds new controls and resolves several bugs. This is not a security update.
https://www.ntlite.com/download/

Coreinfo 3.5 doesn’t provide a changelog so should be treated as a security update.
https://live.sysinternals.com/

LiveKD 5.63 doesn’t provide a changelog so should be treated as a security update.
https://live.sysinternals.com/

Process Explorer 16.32 doesn’t provide a changelog so should be treated as a security update.
https://live.sysinternals.com/

Sysmon 11.0 adds file delete and archive monitoring, additional options to control behavior, improved log support and reliability improvements. This is not a security update.
https://live.sysinternals.com/

Developer Updates

These are unlikely to be of interest to most people.

Node.js 14.1.0 is a new major version adding several new features, libraries and bug fixes. Unfortunately, the previous build (14.0.0) broke stream support for many packages. This version resolves that bug. This is a security update.
https://nodejs.org/en/

Node.js 13.14.0 resolves several bugs. This is a security update.
https://nodejs.org/en/

Node.js 12.16.3 updates libraries. This is a security update.
https://nodejs.org/en/

Redemption 5.23.0.5664 adds support for in-memory objects, several new objects, collection-level assignments, and resolves several bugs. This is not a security update.
http://www.dimastr.com/redemption/

MySQL ConnectorNet 8.0.20 resolves several bugs. This is not a security update.
https://dev.mysql.com/downloads/connector/net/

Web Package Updates

These are likely to be of interest only to web developers.

WordPress 5.4.1 is a security update.
https://wordpress.org/

ScreenConnect 20.3.28091.7419 improves relay action scheduling, resolves several bugs. This is not a security update.
https://www.connectwise.com/software/control/download

Magento 2.3.4-p2, 2.3.5-p1, 1.14.4.5, 1.9.4.5 are security updates.
https://helpx.adobe.com/security/products/magento/apsb20-22.html#solution

Joomla 3.9.18 is a security update.
https://www.joomla.org/

HumHub 1.5.1 resolves several bugs. This is not a security update.
https://www.humhub.com/en/download

MailEnable 10.30 resolves several bugs. This is not a security update.
https://www.mailenable.com/

Nextcloud Server 18.0.4 resolves dozens of bugs and updates libraries. This should be treated as a security update.
https://nextcloud.com/

phpList 3.5.3 is a security update.
https://www.phplist.org/

YOURLS 1.7.9 improves compatibility, API signature algorithm, accessibility, and resolves several bugs. This is not a security update.
https://yourls.org/

Akismet 4.1.5 disables the notice and updates WP requirements. This is not a security update.

Antispam Bee 2.9.2 improves compatibility, and resolves several bugs. This is not a security update.

BuddyPress 5.2.0 is a security update.

Custom Facebook Feed 2.14 resolves several bugs. This is not a security update.

myStickymenu 2.4 resolves several bugs and adds font color control. This is not a security update.

Postie 1.9.50 improves diagnostics. This is not a security update.

W3 Total Cache 0.13.3 resolves a minification bug. This is not a security update.

WP Mail SMTP 2.0.0 changes PHP requirements (7+) and resolves several bugs. This is not a security update.

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/

Updates 2020-04-01

Happy April Fools’ Day, Folks!

It’s not Patch Tuesday, but updates from Microsoft, Apple, Google, and others have triggered an out-of-cycle update.

This Month/Week in Technology

The FCC announced that by July 2021 every US phone company (landline and mobile) must adopt STIR/SHAKEN which will massively reduce the amount of robocalls and phone spam people receive and ensure that call blocking features work as intended.

Microsoft has rebranded Office 365 to Microsoft 365 and is launching more features and cross-platform monitoring across the system. Is this the next step towards Windows-as-a-Service?

Dell and HP Enterprise have issued updates for the runtime bug in certain Enterprise solid-state drives (SSDs) that will begin bricking them in only a couple months.

The latest to jumping on the virus-free-trial bandwagon is Plex.

The country of Georgia has been hacked, with data on almost every citizen being posted online.

How bad are companies at dealing with ransomware? Most corporations and governments just give in and negotiate the ransom. Others pay insurance through companies like Chubb, a cyber-insurer for this type of thing. Can a company insure itself?

For a couple days, the latest builds of iOS and macOS wouldn’t let you search for a “+” sign. This is more common than you might think, and one of the pieces of advice in my Selecting the Perfect Domain” guide.

#3 Don’t use any strange characters

CloudFlare’s 1.1.1.1 public DNS resolver received glowing marks in a recent study. While it’s very private and fast, it doesn’t provide built-in security as does OpenDNS, though.

Now for the good news:

Even the scientist most cited for his chicken-little response to COVID-19 has reversed course and said he over-estimated lethality and virulence.

Let’s Get Busy

Microsoft released an out-of-cycle update to address connectivity problems for VPN users. If you’re using a VPN, use Windows Update to install the most current version.

Apple released security updates for iCloud for Windows 7.18 and iCloud for Windows 10.9.3. Use Apple Software Update to install the most current versions.

Google Chrome OS 80.0.3987.158 is a security update. Use Menu, Help, About to install the most current version. A reboot is required.

Important Notes

Everything above this section should be checked by everyone on every computer. Chances are good that close to every single computer you touch will be affected by those updates. This is not the case with the items below, though you should still check each line item below to see if it applies to software you have installed.

Please remember that while I list many different applications within these updates, most people should ONLY install updates for a program if they already have a previous version of that program installed.

It is essential to maintain all the applications you have installed on your computer, but often you can minimize the time investment and the potential for exploitation simply by uninstalling software you do not need.

Also note that using the applications own “check for updates” function, when available, will best preserve your current settings, and often avoid any crapware that might come with a fresh installer. Use this option if it’s available to you.

Finally, if you’re sick of doing this all yourself, let me! Call or email me any time, and we can set you up with subscription SaferPC updates which will be installed each month whenever necessary. Click, call or email for more details:
https://saferpc.info/updates/
209-565-12PD
shawn@12pointdesign.com

Driver Updates

If you’re using this hardware – these updates are for you.

Display Driver Uninstaller 18.0.2.3 improves cleanup. This is not a security update.
https://www.wagnardsoft.com/display-driver-uninstaller-ddu

Browser Updates

One or more of these are likely to be of interest to everyone.

Google Chrome 80.0.3987.162 is a security update. Use Menu, Help, About to get the most current version.

Internet Updates

One or more of these are likely to be of interest to everyone.

WinSCP 5.17.3 is a security update.
https://winscp.net/eng/index.php

Game Updates

These are unlikely to be of interest to most people.

Steam 2020.03.26 resolves several bugs. This is not a security update.

PlayStation PS3 4.86 improves system performance. This is not a security update.
https://www.playstation.com/en-us/support/system-updates/ps3/

Office Updates

One or more of these are likely to be of interest to most people.

Krita 4.2.9 adds Airbrush and Ratio controls to the Color Smudge brush, and resolves 70 bugs. This is not a security update.
https://krita.org/en/download/krita-desktop/

Security Software Updates

One or more of these is likely to be of interest to most people.

RogueKiller 14.4.0 resolves several bugs, improves compatibility and adds warnings to certain scans.
https://www.adlice.com/download/roguekiller/

Converter Updates

These are unlikely to be of interest to most people.

DVDFab 11.0.8.2 adds support for new encodings. This is not a security update.
https://www.dvdfab.cn/download.htm

Utility Updates

These are unlikely to be of interest to most people.

RoboForm 8.6.8 improves data synchronization, Windows Hello integration, and resolves several bugs. This is not a security update.
https://12pd.com/click?rf

GoodSync 10.11.4 resolves several bugs and improves compatibility. This is not a security update.
https://12pd.com/click?goodsync

DesktopOK 6.91 improves compatibility with the next build of Windows. This is not a security update.
https://www.softwareok.com/?seite=Freeware/DesktopOK

NetworkInterfacesView 1.20 adds option to open device properties window with F2. This is not a security update.
https://www.nirsoft.net/utils/network_interfaces.html

PSAppDeploy 3.8.1 adds Repair action and new installation controls, and resolves several bugs. This is not a security update.
https://psappdeploytoolkit.com/

MS ISO Downloader 8.34 adds several new ISOs. This is not a security update.
https://www.heidoc.net/joomla/technology-science/microsoft/67-microsoft-windows-and-office-iso-download-tool

WinScan2PDF 5.25 resolves a TWAIN bug under Windows 10 x64. This is not a security update.
https://www.softwareok.com/?seite=Microsoft/WinScan2PDF

Developer Updates

These are unlikely to be of interest to most people.

Android Studio 3.6.2.0 resolves over a dozen bugs. This is not a security update.
https://developer.android.com/studio/index.html

Node.js 13.12.0 improves build notarization for macOS, upgrades libraries, adds option to disable proto to CLI, moves diagnostic reports to stable, and now allows URL in worker constructor. This is not a security update.
https://nodejs.org/en/

Web Package Updates

These are likely to be of interest only to web developers.

OpenPetra 2020.03 resolves the PDF printing bug, as well as several other bugs. This is not a security update.
https://www.openpetra.org/

WordPress 5.4 improves the block editor, adds Social Icons and Buttons, gradients to Buttons and Cover block, color options to Group, Columns, and Rich Text, improved consistency, as well as many developer and privacy improvements. This is not a security update.
https://wordpress.org/

Postie 1.9.45 resolves an email notification bug. This is not a security update.
https://wordpress.org/extend/plugins/postie/

Custom Facebook Feed 2.13 adds a Block. This is not a security update.
https://wordpress.org/extend/plugins/custom-facebook-feed/

That’s all for now folks. Keep it clean out there. 😉

Regards,

Shawn K. Hall
https://SaferPC.info/
https://12PointDesign.com/