|
Patch reliability is unclear, but widespread attacks make patching prudent. Go ahead and patch, but watch out for potential problems. |
Newsletter Archives
-
The state of OneDrive
ONEDRIVE
By Ed Tittel
Microsoft OneDrive is a cloud-based file storage service that dates all the way back to 2007.
It has become more tightly integrated into Windows since the Vista days, through Windows 7, 8.x, 10, and now 11. OneDrive is also available for MacOS, iOS, Android, and Xbox.
And, of course, Microsoft 365 apps also work directly and automatically with OneDrive.
This article seeks to describe OneDrive’s status as of early 2024 and to illuminate some specific issues or potential gotchas that OneDrive can present — at least, for some users.
Read the full story in our Plus Newsletter (21.06.0, 2024-02-05).
-
My 2023 rear-view mirror and 2024 crystal ball
ISSUE 20.52 • 2023-12-26 Look for our BONUS issue on January 1, 2024! Happy New Year! MICROSOFT 365
By Peter Deegan
Let’s first check the 2023 rear-view mirror to see what good, and not-so-good, things happened with Microsoft 365.
I’ll look at just some of the changes, perhaps not the most-hyped-but-possibly-overlooked ones in the never-ending road that is Microsoft marketing. Then I’ll peer over the steering wheel to see what will or might happen in 2024.
Read the full story in our Plus Newsletter (20.52.0, 2023-12-26).
This story also appears in our public Newsletter. -
New fonts and templates, but with traps
ISSUE 20.36 • 2023-09-04 MICROSOFT 365
By Peter Deegan
Whenever you start a new document by clicking “Blank” (or “New”) in Word, Excel, PowerPoint, or Outlook, you’re almost certainly using Microsoft’s default templates and fonts.
Microsoft has started pushing changes to those starting “blanks” for Microsoft 365 in a very special way that adds little compatibility traps for Office 2021/2019 as well as earlier versions.
You’ve probably heard about the change in default templates and the arrival of the new Aptos font family. What I’ll explain here is the true scope of those changes and how they are quite different from past Office template and font changes.
Read the full story in our Plus Newsletter (20.36.0, 2023-09-04).
This story also appears in our public Newsletter. -
Microsoft 365: Year in review
MICROSOFT 365
By Peter Deegan
Let’s take a minute to check the rearview mirror and review what’s happened this year with Microsoft Office. We’ll also peer over the horizon to speculate about 2023.
There were obvious (and not-so-obvious) changes to Microsoft Office and Microsoft 365. I’ll look at just some of the changes. They might not be the most hyped changes coming from the never-ending road that is Microsoft marketing, and some of them might be overlooked but yet interesting.
Read the full story in our Plus Newsletter (19.52.0, 2022-12-26).
-
Why would you use OneNote at all?
ONENOTE
By Mary Branscombe
If you’ve never seen the point of a digital shoebox for notes, here are some ways of putting OneNote to use that could change your mind.
From the feedback I get when I talk about OneNote, it’s clear that there are plenty of devoted fans and heavy users out there. But I also get questions asking why you should use OneNote, and what it’s good at.
Read the full story in our Plus Newsletter (19.47.0, 2022-11-21).
-
Windows 11’s unique bug
PATCH WATCH
By Susan Bradley
Whenever Microsoft releases a new version of Windows, it invariably introduces new bugs as a side effect.
KB5016629 includes a fix for a server message-block (file-sharing) bug that is unique to Windows 11. In a peer-to-peer network, an attacker could trick you by using web-based sharing links such as Azure or other data centers. Windows 10 and earlier are not affected.
This month’s Windows 11 updates also include fixes for issues where File Explorer fails to work when you use the Star menu’s context menu and an external monitor, or when you use the Play and Pause keyboard buttons.
Not to be outdone, the Windows 10 security update this month, KB5016616, includes fixes for an issue that affects printing. Let’s hope it fixes those problems we’ve been seeing with USB-based printers.
Read the full story in our Plus Newsletter (19.33.0, 2022-08-15).
-
JavaScript equations coming to Excel. What on earth are they thinking?
I was going to let this one fly by, but I just can’t.
If you’re in the Office Insider program, you can now use custom functions in Excel that are written in… my sweet lord… JavaScript.
The Office Dev Center describes the functions thusly:
Custom functions (similar to user-defined functions, or UDFs), enable developers to add any JavaScript function to Excel using an add-in. Users can then access custom functions like any other native function in Excel (such as
=SUM()). … Custom functions are now available in Developer Preview on Windows, Mac, and Excel Online.My jaw dropped when I heard that in the aftermath of a Build presentation yesterday. In fact, I figured I heard it wrong. But no.
What’s wrong with making JavaScript available as an in-the-sheet programming language? As Lawrence Abrams at BleepingComputer notes, “within hours” a security researcher, Chase Dardaman, figured out a way to put the CoinHive in-browser JavaScript miner inside a spreadsheet.
As if 25 years of macro malware wasn’t enough.
-
Excel bug fixed: Renamed HTML files now open properly.
Reversing a bug that was intentionally introduced last month. It isn’t a complete solution, but it is a decent compromise.
InfoWorld Woody on Windows
-
New Excel 0day
This hasn’t yet hit the main news feeds, but Microsoft just released Security Bulletin 968272, which discusses another 0day that takes advantage of a security hole in all modern versions of Excel, and the Excel Viewer.
Yes, you read that right. The Excel Viewer is vulnerable too.
Microsoft’s suggested fix for the moment? “Do not open or save Office files that you receive from un-trusted sources or that are received unexpectedly from trusted sources. This vulnerability could be exploited when a user opens a file.”
The Security Bulletin goes on to give a lengthy set of manual instructions, which includes editing the Registry, that may or may not fend off the worm. Or you can block opening files from Office 2003 or earlier.
Oh boy. In other words, bend over and kiss your keester goodbye.
Symantec has encountered an infected file, Trojan.Mdropper.AC, that’s easy to block. It remains to be seen if the exploit folks are smart and fast enough to morph the Trojan so it isn’t so easy to thwart.
Today would be a very good day to avoid opening any Excel file that you don’t know well.
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Orb : how fast is my Internet connection
by 3 hours, 19 minutes ago
-
Solid color background slows Windows 7 login
by 4 hours, 40 minutes ago
-
Windows 11, version 24H2 might not download via Windows Server Updates Services
by 3 hours, 10 minutes ago
-
Security fixes for Firefox
by 2 hours, 39 minutes ago
-
Notice on termination of services of LG Mobile Phone Software Updates
by 15 hours, 24 minutes ago
-
Update your Apple Devices Wormable Zero-Click Remote Code Execution in AirPlay..
by 1 day ago
-
Amazon denies it had plans to be clear about consumer tariff costs
by 15 hours, 28 minutes ago
-
Return of the brain dead FF sidebar
by 2 hours, 40 minutes ago
-
Windows Settings Managed by your Organization
by 1 hour, 48 minutes ago
-
Securing Laptop for Trustee Administrattor
by 2 hours, 49 minutes ago
-
The local account tax
by 4 hours ago
-
Recall is back with KB5055627(OS Build 26100.3915) Preview
by 1 day, 13 hours ago
-
Digital TV Antenna Recommendation
by 1 day, 6 hours ago
-
Server 2019 Domain Controllers broken by updates
by 2 days, 1 hour ago
-
Google won’t remove 3rd party cookies in Chrome as promised
by 2 days, 3 hours ago
-
Microsoft Manager Says macOS Is Better Than Windows 11
by 2 days, 6 hours ago
-
Outlook (NEW) Getting really Pushy
by 1 day, 8 hours ago
-
Steps to take before updating to 24H2
by 23 hours, 28 minutes ago
-
Which Web browser is the most secure for 2025?
by 1 day, 13 hours ago
-
Replacing Skype
by 1 day, 1 hour ago
-
FileOptimizer — Over 90 tools working together to squish your files
by 2 days ago
-
Excel Macro — ask for filename to be saved
by 21 hours, 35 minutes ago
-
Trying to backup Win 10 computer to iCloud
by 1 day, 1 hour ago
-
Windows 11 Insider Preview build 26200.5570 released to DEV
by 4 days, 6 hours ago
-
Windows 11 Insider Preview build 26120.3941 (24H2) released to BETA
by 4 days, 7 hours ago
-
Windows 11 Insider Preview Build 22635.5305 (23H2) released to BETA
by 4 days, 8 hours ago
-
No April cumulative update for Win 11 23H2?
by 2 days, 19 hours ago
-
AugLoop.All (TEST Augmentation Loop MSIT)
by 4 days, 8 hours ago
-
Boot Sequence for Dell Optiplex 7070 Tower
by 4 days, 23 hours ago
-
OTT Upgrade Windows 11 to 24H2 on Unsupported Hardware
by 5 hours, 36 minutes ago
Remembering Woody
