Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Mass account taskeover via API possible with smart Yunmai scales
[German]Security researchers have had a closer look at smart scales offered by the Chinese manufacturer Yunmai. These smart scales can be coupled with an app on the smartphone via Bluetooth so that the personal data of several people may be … Continue reading
Windows MSDT 0-day vulnerability "DogWalk" receives 0patch fix
[German]In addition to the Follina vulnerability (CVE-2022-30190) in the Windows ms-msdt protocol, there is another DogWalk-named vulnerability in connection with the Microsoft Diagnostic Tool (MSDT). This vulnerability was reported to Microsoft two years ago, but is unlikely to be patched. … Continue reading
Chrome 102.0.5005.115 fixes 7 vulnerabilities
[German]Google has released the update of Google Chrome 102.0.5005.115for Windows and Mac on desktop in the Stable Channel and Extended Stable Channel as of June 9, 2022. The security update addresses 7 vulnerabilities..61 aktualisiert. Mit dem Sicherheitsupdate werden 7 Schwachstellen … Continue reading
Microsoft Edge 102.0.1245.39
[German]Microsoft has updated the Edge browser in the stable channel to version 102.0.1245.39 as of June 9, 2022 to close a security vulnerability. Currently, it is unclear if the PDF printing issues have been fixed. Thanks to blog readers for … Continue reading
Access to public/private surveillance cameras sold: Italian hacking groups busted
[German]Hacking rings have been busted in Italy for hacking into surveillance cameras and then selling the videos on the Internet. The case shows that the victims had often installed this video surveillance themselves and operated it without any further security … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Windows Vulnerability Follina (CVE-2022-30190): New findings, new risks (June 9, 2022)
[German]The unpatched Windows vulnerability CVE-2022-30190 (Follina) which has been known since late May 2022, is slowly becoming a problem. The countermeasures described by Microsoft (and here in my blogs) do not seem sufficient. And the vulnerability is now also exploited … Continue reading
Fake CCleaner search results link to malware (information stealer)
[German]AVAST has discovered a malware campaign (FakeCleaner) in which cybercriminals manipulated search results for a cracked CCleaner Pro in such a way that they acted as malware launchers. If users follow the links of these hits, they download malware onto … Continue reading
Follina (CVE-2022-30190): No major attack wave, but campaigns on EU/US and other targets
[German]A 0-day vulnerability CVE-2022-30190 (Follina) in Windows has been known since the end of May 2022. Yesterday, a tip from a security researcher came to my attention, who has not yet found any active exploitation via manipulated Office documents. On … Continue reading
Palermo/Sicilia: IT systems offline after ransomware attack
[German]On the Friday (June 3, 2022) before Pentecost, the news made the rounds on Twitter that there had been a cyberattack on Palermo's IT systems. It was speculated quite quickly that it was likely to be a ransomware attack. It … Continue reading
46,000 people lose US$1 billion to cryptocurrency fraud since 2021
[German]Cryptocurrency is in the focus of the public and people sometimes try to make a "quick mark". But where profits beckon, fraud and risk are not far behind. The U.S. Federal Trade Commission (FTC) has just released a report that … Continue reading