Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Patch for Sonic Firewall vulnerability CVE-2022-22274 – not for all products
[German]Another small addendum from the end of March 2022. There is a vulnerability (CVE-2022-22274) in SonicOS, the operating system for Sonic firewalls, which allows DoS attacks. The manufacturer has now also developed and released an update to close the vulnerability. … Continue reading
Was there a cyber attack at American Express? Worldwide service outage on April 1, 2022
[German]Here's a quick information about an information a reader has send me in a private Facebook message. American Express seems to be having service issues since April 1, 2022 – a 2FA login doesn't really work, transactions get stuck. And … Continue reading
Lapsus$: Two UK teenagers charged in connection with hacking for this group
[German]The London Police have now announced that two teenagers aged 16 and 17 from the UK will be charged with involvement in activities of the Lapsus$ hacking group. The identities of members of the hacking group had become known a … Continue reading
Microsoft Edge 100.0.1185.29 fixes vulnerabilities
[German]Microsoft has updated the Chromium Edge browser to version Edge 100.0.1185.29 on 1 April 2022 (no April Fool's joke). This is a maintenance update that closes a number of vulnerabilities and initiates the 100 development branch.
Deep Panda: Targets VMware Horizon Server via Log4Shell
[German]Security researchers from Fortinet have come across a malware campaign that they attribute to the Chinese APT group Deep Panda. The malware uses the Log4Shell vulnerability in VMware Horizon servers to exploit. A backdoor and a new type of rootkit … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Microsoft Security Update Revisions (March 31, 2022)
[German]Microsoft has issued a Security Update Revisions on March 31, 2022, because CVE-2022-23295 (Raw Image Extension Remote Code Execution Vulnerability) has undergone a revision increment. The reason for Revision of the CVE from March 8, 2021 (which is quoted as … Continue reading
USA: Sanctions against Kaspersky could increase cyber risk from Russia
[German]Interesting report from the Wall Street Journal regarding the Russian antivirus provider Kaspersky. The proposal from the White House to sanction Russian security vendor Kaspersky over the invasion of Ukraine is dividing the Biden administration. Some members of the staff … Continue reading
Security updates: iOS 15.4.1 and macOS Monterey 12.3.1
[German]Apple has released two security updates for macOS 12.3.1 (Monterey) and iOS/iPad OS 15.4.1. These patches close vulnerabilities CVE-2022-22675 (in AppleAVD for iOS and macOS) and CVE-2022-22674 in the macOS Intel graphics driver. Apple has received reports that the vulnerabilities … Continue reading
Got lost in Defender? There is something like a Defender Cheat Sheet available
[German]Indiscreet question to the readers of this blog: Do you still have an overview of exactly what Microsoft is currently doing with its Defender? I confess that I got lost a long time ago and get confused when blogging because … Continue reading
New security feature allows driver block lists in Windows 10, 11 and Windows Server
[German]Microsoft is working on improving the protection of the current versions of Windows 10, Windows 11 and Windows Server 2016 and their successors against harmful drivers. For this purpose, Windows Defender Application Control (only available in Enterprise editions) or HVCI … Continue reading