Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
WhatsApp: Two vulnerabilities allow remote code execution
[German]Meta subsidiary WhatsApp warns about two vulnerabilities in its apps for Android and iOS that put users' security at risk. Both vulnerabilities allow remote code execution – so the apps should be updated promptly.
Windows 11 strengthens SMB traffic protection
[German]Microsoft is starting to improve protection for the SMB protocol in Windows 11. Thus, Microsoft has introduced a delay between SMB authentications in Windows 11 (in Insider Previews). This is intended to prevent spying on SMB traffic. There is also … Continue reading
17 year old arrested in England for Uber hack, member of Lapsus$ group?
[German]In the last few days, I reported on various hacks at the ride service provider Uber, at Rockstar Games, and so on. A hacker with the alias Tea Pot claims to be only 18 years old and to have penetrated … Continue reading
How to find weak passwords in Active Directory and eliminate them with PowerShell
Advertising – Weak or compromised passwords are a known gateway for attackers. If you are able to identify which users in Active Directory (AD) are threatened by this, then PowerShell can help to remedy it. However, PowerShell scripts cannot eliminate … Continue reading
NTLM connection fallback Update KB15498768 for Microsoft Endpoint Configuration Manager
Microsoft has released unscheduled update KB15498768 for Microsoft Endpoint Configuration Manager (current branch, versions 2103, 2107, 2111, 2203, 2207) as of September 20, 2022. This update is intended to fix the vulnerability CVE-2022-37972. Details can be found in the support … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Pre Auth Remote Command Execution (CVE-2022-36804) in Atlassian Bitbucket
[German]There is a critical remote command execution vulnerability (CVE-2022-36804) in the version management for software development projects, Atlassian Bitbucket. Atlassian had already published a security advisory and a product update for the vulnerability, which was rated critical, at the end … Continue reading
Thunderbird 102.3.0 released
[German]The developers of Thunderbird have released another update to the email client to version 102.3.0 as of September 20, 2022 (thanks to the reader for pointing this out). It's a bug-fix update, which is supposed to fix a number of … Continue reading
Lexmark firmware update closes vulnerability and fixes Windows printer issue
[German]Good news for owners of Lexmark printers. The manufacturer has finally provided the firmware updates for various models. On the one hand, these are supposed to eliminate a vulnerability in more than a hundred Lexmark printer models, which Lexmark already … Continue reading
Rockstar Games leak: source code and many game videos published after hack
[German]Game developer Rockstar Games was hacked. Now a user on GTAForums has posted 90 video taken from a test build of Grand Theft Auto 6. The hacker also claims to have the source code of GTA 5 and 6. The … Continue reading
Data wiped in IHG hack for revenge, Vietnamese couple says
[German]More information on the hack of InterContinental Hotels Group PLC (IHG) a few weeks ago. What was originally planned as blackmail then led to the deletion of extensive data when the blackmail went wrong. This is what a couple from … Continue reading