Only affects Windows Server Core, so that’s alright then
A sad-faced Microsoft engineer has had to reset the “Days since we last shot ourselves in the foot” counter at the company’s HQ after a security update broke Microsoft Defender for Endpoint on Windows Server Core.
The issue started with patches emitted on 9 November, KB5007205 and KB5007206. The latter included the LTSC editions of Windows 10, however, as Microsoft pointed out, only devices with a Windows Server Core installation were affected. Microsoft Defender for Endpoint on Windows 10 will therefore still behave normally.
It appears that not even Microsoft’s latest and greatest is immune from the company’s inability to release patches that don’t break something or other. KB5007205 is for Windows Server 2022 and the subsequent preview patch emitted earlier this week, KB5007254, has the same problem.
That said, the preview patch fixes the Windows Installer problem that broke Kaspersky’s products for some users (as did KB5007266 for Server 2019. The Defender for Endpoint woes have, however, remained.
- Patching Windows Server without needing to reboot is a handy feature – but it’s only available on Azure
- Intel audio drivers give Windows 11 the blues and Microsoft Installer borked following security update
- Microsoft slows Windows 10 release cadence to yearly. If they’re all as dull as the November Update, this is fine
As far as how the issue manifests itself, Microsoft Defender for Endpoint might simply fail to start or run on affected systems (again, just Server, not Windows 10.) This is not ideal, since the point of the platform is to prevent, detect and respond to threats.
It uses, according to Microsoft, technology built into its “robust cloud service.”
Unfortunate, then, that its own quality processes appear somewhat less than robust, as the expanding known issues implies.
As yet, there is no fix for the problem nor estimated date for its arrival. Microsoft said: “We are working on a resolution and will provide an update in an upcoming release,” so that’s alright then.
The Register contacted Microsoft for more details, which said it had “nothing further to share at this time.” ®
Other stories you might like
LG Electronics anoints new CEO, elevates exec who grew laptop biz too
M&A department elevated in importance, gets more resources
LG Electronics has named its new CEO: William Cho.
Currently the Chaebol’s chief strategy officer, Cho will assume the big chair on December 1.
Another promotion saw current senior vice president Jang Ik-hwan elevated to executive vice president, and to head LG’s Business Solutions Company after what the company described as “successfully growing the IT business portfolio to make LG one of the fastest-growing brands in the notebook, laptop and monitor business”. Another senior veep, Eun Seok-hyun, will lead LG’s Vehicle Component Solutions company.
Seaberry carrier board turns a Raspberry Pi into a desktop PC with 11 PCIe slots
It’s a bit pricey, though
Fancy a Raspberry Pi 4 in a desktop ITX form factor with 11 PCIe slots? The new Seaberry carrier board may make your wish come true – but for a fairly hefty price.
As we mentioned earlier this month, the forthcoming Linux kernel 5.16 will sport better support for the Raspberry Pi 4 Compute Module. This tiny daughterboard plugs into I/O carrier boards, making the Compute Module a lot more versatile than the Raspberry Pi 4 proper.
Alpine Linux 3.15 bids a fond farewell to MIPS64 support
LTS Linux kernel – check. Once proud RISC contender? Nope
The compact Linux distribution Alpine has gained the latest LTS Linux kernel with the update to version 3.15, but fans must say goodbye to support for the MIPS64 architecture.
The release is the first in the 3.15 stable series and, as well as the 5.15 LTS Linux kernel, received a raft of updated tools and components, including the 16.13 LTS version of Node.js (version 17 is also included) and GNOME 41.
There is also some initial support for UEFI secure boot on x86_64, but the time has come to say goodbye to the MIPS64 port.
Desktop bust and custom iPhone 13 Pro made from melted-down Tesla car for the Elon Musk dork in your life
Here’s one for those with their heads crammed so far up Elon Musk’s arse they see the light when he yawns – a desktop bust and custom iPhone 13 Pro design dedicated to the centibillionaire meme machine, both allegedly made from the molten body parts of a Tesla car.
One doesn’t have to scroll far down anything the Tesla and SpaceX founder tweets to find legions of sycophants lapping up his bullshit pearls of wisdom, of which half he claims are composed while he’s taking a dump. Suddenly everything makes sense.
Moving swiftly on from the concerning poop rate, helpfully highlighted by Neil “Nobody Asked You” deGrasse Tyson, Musk’s most faithful adherents appear to be the target audience because who else could live with that smug mug judging your work?
AWS chops data transfer fees by massive extension of free tier – 2 months after rival previewed R2 Storage
Customer: ‘I should send Cloudflare a Christmas card to say thanks’
AWS has improved its free tier for data transfer, from 1GB to 100GB per month for transfer to the internet, and from 50GB to 1TB for CloudFront, its content delivery network.
According to AWS chief evangelist Jeff Barr “as a result of this change millions of AWS customers worldwide will no longer see a charge for these two categories of data transfer,” which is effective from 1 December.
The free allocation will apply to services such as S3 (Simple Storage Service), web applications on EC2 (Elastic Compute Cloud) VMs and so on. There is an exclusion for the AWS GovCloud and for China regions.
Academics tell Brit MPs to check the software used when considering reproducibility in science and tech research
It’s seldom subject to the same rigour as conventional apparatus
Brit MPs are being encouraged to pay attention to the role software plays as they prepare a report on reproducibility in the science and technology industry, which adds around £36bn to the economy.
According to joint academics group the Software Sustainability Institute, about 69 per cent of research is produced with specialist software, which could be anything from short scripts to solve a specific problem, to complex spreadsheets analysing collected data, to the millions of lines of code behind the Large Hadron Collider and the Square Kilometre Array.
“With many studies, research published without the underlying software used to produce the results is unverifiable,” the institute said in its submission to the Parliamentary Science and Technology Committee’s Reproducibility and Research Integrity Inquiry.
Autonomy accounts whistleblowers may testify at founder Mike Lynch’s US criminal trial
Recent legal wranglings sliced, diced, and dished up for your reading pleasure
As the US government targets Darktrace personnel as witnesses for Autonomy founder Mike Lynch’s forthcoming criminal trial, it’s also seeking extra evidence from internal Autonomy whistleblowers.
News broke last weekend that US prosecutors were demanding disclosure of documents, emails, and chat logs from infosec firm Darktrace’s CEO, Poppy Gustafsson. Prosecutors want her, among others, to appear as a witness at the trial of Mike Lynch – an early investor in Darktrace – and ex-VP Stephen Chamberlain.
Lynch and Chamberlain are accused of fraudulently bulking up Autonomy’s reported revenues, deceiving Hewlett Packard (as it was called in 2011) into buying Autonomy for $11bn. HP later wrote down the British software company’s value by $8.8bn, crying fraud as it did so. Among other things, the US alleges Autonomy presented itself to the world as a “pure play” software company while generating a chunk of its profits from hardware sales that weren’t revealed in its public accounts.
ESA’s Solar Orbiter will swing past Earth this week – sure hope nobody created a big cloud of space junk up there
Interview ESA’s Solar Orbiter is to undertake a flyby of Earth, requiring a careful assessment of debris as it dips close to the orbit of the International Space Station (ISS) ahead of its main science mission.
The flyby is due to take place on the 26 and 27 of November.
The amount of debris on orbit was helpfully increased last week by Russia’s anti-satellite missile demonstration, much to the consternation of NASA and other space agencies.
UK.gov emits draft IoT and smartphone security law for Parliamentary scrutiny
Mandatory vuln reporting, hefty fines for non-compliance
A new British IoT product security law is racing through the House of Commons, with the government boasting it will outlaw default admin passwords and more.
The Product Security and Telecommunications Infrastructure (PSTI) Bill was introduced yesterday and is intended to drive up security standards in consumer tech gadgetry, ranging from IoT devices to phones, fondleslabs, smart TVs, and so on.
Digital infrastructure minister Julia Lopez MP said in a canned statement: “Our Bill will put a firewall around everyday tech from phones and thermostats to dishwashers, baby monitors and doorbells, and see huge fines for those who fall foul of tough new security standards.”
Robotaxis freed to charge across 60km2 of Beijing
Baidu’s Apollo tech exits testing phase, so punters must now pay the machine for a ride. Would you?
Poll Sixty square kilometres in Beijing’s Economic and Technological Development Zone have been approved for commercial operation of Chinese web giant Baidu’s autonomous taxi service.
The service, called Apollo Go, will have over 600 pick-up and drop-off points in both commercial and residential areas and will run from 07: 00 to 22: 00 every day.
“With the service’s first-ever commercial deployment on open roads, Apollo Go marks a further step in its accelerating progress towards large-scale commercial operation,” said Baidu in a canned statement.
Google advises passwords are good, spear phishing is bad, and free clouds get attacked
Ad giant’s first stab at providing the ‘world’s premier security advisory’ starts with the obvious
Google’s Cybersecurity Action Team has released its first “threat horizon” report on the scary things it’s found on the internet.
The advertising giant launched the Team in October 2021, when execs said its ambition was to become “the world’s premier security advisory team” and dispense advice that will improve cyber resilience for all.
The Team’s first report offers six nuggets of intelligence, and The Register believes none will surprise readers.