Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Zyxel warns of vulnerabilities in firewalls, AP controllers and access points (May 24, 2022)
[German]Vendor Zyxel has published a security advisory warning of several vulnerabilities in firewalls, access points and access point controllers. Attackers can execute their own code via the vulnerabilities, block 2FA login and disrupt the devices. However, updates are available for … Continue reading
Chrome 102.0.5005.61/62/63 fixes critical vulnerabilities
[German]Google has released updates to the 102.0.5005.61/62/63 Google Chrome browser for Windows and Mac on the desktop in the Stable Channel as of May 24, 2022 (Chrome 102 is also included in the Stable Channel for Windows and Mac). Furthermore, … Continue reading
Cisco patches vulnerability in IOS XR software
[German]Cisco has released last week a patch for a vulnerability in its IOS XR software. The vulnerability, CVE-2022-20821 (CVSS score: 6.5), allows an unauthenticated, remote attacker to connect to a Redis instance and achieve code execution. The vulnerability is already … Continue reading
Windows Defender Application Control: Recommended blocking rules (May 2022)
[German]In Windows 10 and Windows 11, Windows Defender Application Control (WDAC) and AppLocker are available as features in the enterprise variants (Windows 10/11 Enterprise) as security features (see this post). Now, Microsoft has published a list of recommended blocking rules … Continue reading
Conti ransomware gang stops activities – actors continue to operate
[German]A few hours ago, the Conti ransomware gang seems to have officially announced its resolutions and the cessation of all activities. The questions that remain: How long will this last? Will there be a sudden comeback? And do the actors … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Thunderbird 91.9.1
[German]In addition to the Firefox developers providing a security update for the Firefox browser (see Firefox 100.0.2 and 91.9.1esr released), wo critical vulnerabilities in the Thunderbird email client have also been fixed with the May 20, 2022 update to version … Continue reading
Firefox 100.0.2 and 91.9.1esr released
[German]Mozilla developers have released versions 100.0.2 and 91.9.1esr of the Firefox browser on May 20, 2022. These are maintenance updates, which fix two critical vulnerabilities. Thanks to the reader for the tip.
VMware closes vulnerabilities, DHS gives U.S. federal agencies 5 days to patch
[German] VMware has fixed a critical bug in several of its products through updates. The vulnerability, CVE-2022-22972, allows administrative access without authentication and affects the Workspace ONE Access, VMware Identity Manager (vIDM) and vRealize Automation products. The U.S. Department of … Continue reading
Microsoft observed attacks on Microsoft SQL Server via PowerShell
[German]The Microsoft security team is currently warning about a campaign in which unknown attackers are targeting Microsoft SQL databases. Although a brute force approach is used to crack the database access. What is new is that the campaign uses the … Continue reading
Bluetooth Low Energy vulnerability and the Tesla car theft
[German]There is a vulnerability in the Bluetooth Low Energy implementation that allows remote access to corresponding Bluetooth devices (door locks, electronic devices and cars). Among others, the US car manufacturer Tesla had to admit that its electric car models Tesla … Continue reading