Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
QNAP warns about vulnerability CVE-2022-27596 in QTS 5.0.1 and QuTS hero h5.0.1
[German]NAS manufacturer QNAP has issued a security warning for its QNAP products. There is a critical vulnerability CVE-2022-27596 in the QTS 5.0.1 and QuTS hero h5.0.1 software that allows malicious code injection into the firmware. The critical vulnerability has been … Continue reading
CERT Warning: Default KeePass Setup Allows Password Theft (CVE-2023-24055)
[German]Warning to users of KeePass Password Safe for managing passwords and credentials. The Cyber Emergency Response Team from Belgium (CERT.be) published a warning about KeePass on January 27, 2023. In the default setup, write access to the XML configuration file … Continue reading
20,000 accounts hacked at Dutch online mail-order pharmacy DocMorris (Jan. 2023)
[German]Trouble for customers of the online mail-order pharmacy DocMorris. The mail-order company had already restricted payment options days ago due to invoice fraud and requires payment in advance. Now it is reported that 20,000 user accounts at DocMorris were hacked … Continue reading
Microsoft Teams: Remote Code Execution (RCE) vulnerability
A little note about security on Microsoft Teams. Two security researchers @adm1nkyj1 and @jinmo123 participated in pwn2own 2022 in Vancouver. There they tried to hack Microsoft Teams, but failed due to time allocation. Both discovered a bug that allowed an … Continue reading
Malware PlugX infects USB devices
[German]Security researchers from Palo Alto Networks' Unit 42 have observed cyberattacks with new variant of the old known malware. Suspected to originate from China, the PlugX malware has attracted attention because this variant infects all connected USB removable media devices … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
European Data Protection Day 2023
[German]Today, January 28, 2023, is European Data Protection Day. It's a day of action for data protection launched on the initiative of the Council of Europe. It has been celebrated annually around January 28 since 2007. This date was chosen … Continue reading
Edge 109.0.1518.70 and 108.0.1462.95
[German]Microsoft upgraded the Edge browser in the stable channel to version 109.0.1518.70 on January 26, 2023 (thanks to readers for the tips here and here). In addition, the Edge in Extended Stable has been updated to version 108.0.1462.95.
Windows 10: Update on WinRE patch (fix for Bitlocker bypass vulnerability CVE-2022-41099)
[German]One more addendum to the blog post Windows 10: Be aware of WinRE WinRE patch to fix Bitlocker bypass vulnerability CVE-2022-41099. To close the vulnerability (CVE-2022-41099), which allows bypassing Bitlocker encryption in Windows, the clients' Win RE environment (Windows 10) … Continue reading
Posted in Security, Update, Windows
Tagged Bitlocker, issues, Update, Windows 10, Windows 11, WinRE
Leave a comment
Hive ransomware infrastructure seized by law enforcement (Jan. 2023)
[German]In a coordinated action, international law enforcement agencies have seized the infrastructure of the Hive Ransomware group. This means that the group can no longer accept payments via its Tor website. Investigators from the Netherlands, Germany and the US were … Continue reading
OTORIO DCOM Hardening Toolkit for Windows for OT systems released
[German]There was a vulnerability in Microsoft's Windows DCOM implementation that allows security features to be bypassed. Microsoft has documented and patched this, and plans to release a final one in March 2023, however. Security vendor OTORIO has released an open … Continue reading