Social networks
Awards
2013, 2014
2015, 2016
2017, 2018,
2019, 2020
Sponsors
(Paypal-Donations)
Category Archives: Security
Cyber attack on Exchange server of the European Banking Authority
[German]The European Banking Authority has fallen victim to a cyber attack. Their Exchange servers were compromised via vulnerabilities patched in early March 2021. Here is some information on what I know so far. Advertising
Advertising
Gafgyt botnet family targets D-Link, Citrix and IoT
[German]Security researchers have recently encountered a family of botnets called Gafgyt that targets D-Link, Citrix and IoT devices. It is the first malware family to attack vulnerabilities in devices via the Tor network. Advertising
Microsoft MSERT helps to scan Exchange Servers
[English]Redmond has added security information to the latest version of the Microsoft Support Emergency Response Tool (MSERT). The tool can now be run to detect and eliminate the latest Exchange Server threats. Specifically, the tool finds installed Web shells in … Continue reading
Exchange Hack News – Test tools from Microsoft and others
[German]The Hafnium hacker group has probably managed to compromise hundreds of thousands of Exchange installations worldwide via vulnerabilities. A patch to close the vulnerabilities is available, but it may be too late. However, tools are now available from Microsoft and … Continue reading
Exchange isues with ECP/OWA search after installing security update (March 2021)
[German]Brief information for administrators of Microsoft Exchange servers who have yet to install the March 2021 security update. The security update released this week by Microsoft for Microsoft on-premise Exchange servers (2010 to 2019) is indeed intended to close four … Continue reading
Advertising
Important notes from Microsoft regarding the Exchange server security update (March 2021)
[German]Microsoft warns, that installing the March 2021 cumulative security updates for Exchange servers need to be done with administrative privileges. Otherwise the patch will not close the vulnerabilities. In addition, German BSI (Federal Office for Information Security) warns that thousands … Continue reading
Edge 89.0.774.45 released
[German]Microsoft has released the update to Edge 89.0.774.45 on March 4, 2021. It is a new development branch, with this version fixing various vulnerabilities that have already been fixed in Google Chrome. Here is some information about it. Advertising
Sita hack affects passenger data from Star Alliance
[German]Unpleasant story – the servers of the service provider for airlines, SITA (cooperates with IATA), were hacked. Customer data of air travelers of Star Allicance (among others United) got into the hands of hackers. Singapore Airlines and other airlines have … Continue reading
Advertising
Google Chrome 89.0.4389.72 fixes exploited 0-day vulnerability
[German]Google has already released Google Chrome 89.0.4389.72 on March 2, 2021. The browser should be updated promptly because Google is closing an actively exploited 0-day vulnerability (the 2nd in 2021). Advertising
Exchange server 0-day exploits are actively exploited
[German]Microsoft warns: Four 0-day vulnerabilities are combined for targeted attacks on Exchange via Outlook Web App. Administrators of on-premises Microsoft Exchange servers should urgently respond and install the updates released on March 2, 2021. A security update is also still … Continue reading
