Category Archives: Security

Cyber attack on Exchange server of the European Banking Authority

[German]The European Banking Authority has fallen victim to a cyber attack. Their Exchange servers were compromised via vulnerabilities patched in early March 2021. Here is some information on what I know so far. Advertising

Posted in Security | Tagged , | Leave a comment

Advertising

Gafgyt botnet family targets D-Link, Citrix and IoT

[German]Security researchers have recently encountered a family of botnets called Gafgyt that targets D-Link, Citrix and IoT devices. It is the first malware family to attack vulnerabilities in devices via the Tor network. Advertising

Posted in Security | Tagged | Leave a comment

Microsoft MSERT helps to scan Exchange Servers

[English]Redmond has added security information to the latest version of the Microsoft Support Emergency Response Tool (MSERT). The tool can now be run to detect and eliminate the latest Exchange Server threats. Specifically, the tool finds installed Web shells in … Continue reading

Posted in Security | Tagged | Leave a comment

Exchange Hack News – Test tools from Microsoft and others

[German]The Hafnium hacker group has probably managed to compromise hundreds of thousands of Exchange installations worldwide via vulnerabilities. A patch to close the vulnerabilities is available, but it may be too late. However, tools are now available from Microsoft and … Continue reading

Posted in Security | Tagged | Leave a comment

Exchange isues with ECP/OWA search after installing security update (March 2021)

[German]Brief information for administrators of Microsoft Exchange servers who have yet to install the March 2021 security update. The security update released this week by Microsoft for Microsoft on-premise Exchange servers (2010 to 2019) is indeed intended to close four … Continue reading

Posted in issue, Security, Software, Update | Tagged , , | Leave a comment

Advertising

Important notes from Microsoft regarding the Exchange server security update (March 2021)

[German]Microsoft warns, that installing the March 2021 cumulative security updates for Exchange servers need to be done with administrative privileges. Otherwise the patch will not close the vulnerabilities.  In addition, German BSI (Federal Office for Information Security) warns that thousands … Continue reading

Posted in Security, Software, Update | Tagged , , | Leave a comment

Edge 89.0.774.45 released

[German]Microsoft has released the update to Edge 89.0.774.45 on March 4, 2021. It is a new development branch, with this version fixing various vulnerabilities that have already been fixed in Google Chrome. Here is some information about it. Advertising

Posted in browser, Security, Software, Update | Tagged , | Leave a comment

Sita hack affects passenger data from Star Alliance

[German]Unpleasant story – the servers of the service provider for airlines, SITA (cooperates with IATA), were hacked. Customer data of air travelers of Star Allicance (among others United) got into the hands of hackers. Singapore Airlines and other airlines  have … Continue reading

Posted in Security | Tagged , | Leave a comment
Advertising

Google Chrome 89.0.4389.72 fixes exploited 0-day vulnerability

[German]Google has already released Google Chrome 89.0.4389.72 on March 2, 2021. The browser should be updated promptly because Google is closing an actively exploited 0-day vulnerability (the 2nd in 2021). Advertising

Posted in browser, Security, Update | Tagged , , | Leave a comment

Exchange server 0-day exploits are actively exploited

[German]Microsoft warns: Four 0-day vulnerabilities are combined for targeted attacks on Exchange via Outlook Web App. Administrators of on-premises Microsoft Exchange servers should urgently respond and install the updates released on March 2, 2021. A security update is also still … Continue reading

Posted in Security, Software, Update, Windows | Tagged , , | Leave a comment