Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Cloud security, the challenges in 2022
[German]At the moment, it feels like every company is moving its IT to the cloud or is more or less forced to do so by the providers. You often read that the whole thing will be easier and more secure … Continue reading
Zscaler study: 400% increase in retail and wholesale phishing attacks
[English]Security provider Zscaler has produced a study on phishing attacks. The annual ThreatLabz report sees phishing-as-a-service as the reason for the rise in attacks across industries worldwide. Retail and wholesale was the hardest-hit industry, with phishing attacks up more than … Continue reading
Jupyter notebook are attacked with ransomware
[German]Cybercriminals are attacking systems with ransomware via the popular open source software Jupyter Notebook. Team Nautilus, Aqua Security's research unit specializing in the cloud-native technology stack, discovered this new attack method. Aqua Security is the largest provider of pure cloud … Continue reading
Android: Vulnerabilities in Apple Lossless Audio Codec (ALAC)
[German]Security researchers from Check Point Research have also encountered vulnerabilities in the Apple Lossless Audio Codec (ALAC). The vulnerabilities endanger the privacy of Android users because attackers can access user data. This affects devices with both MediaTek and Qualcomm CPUs.
CISA Warning: Windows Print-Spooler Vulnerability CVE-2022-22718 actively exploited
[German]The US Cyber in Infrastructure Security Agency (CISA) has recently added three more entries to its list of actively exploited vulnerabilities. Among them is the vulnerability CVE-2022-22718 in the Windows print spooler, which affects virtually all Windows versions that are … Continue reading
Posted in Security, Update, Windows
Tagged Patchday 2.2022, Sicherheit, Update, Windows
Leave a comment
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Microsofts Defender flags Google Chrome Updates falsely as malicious (April 20, 2022)
[German]Microsoft's Defender for Endpoint (an enterprise security platform, see Got lost in Defender? There is something like a Defender Cheat Sheet available) seems to have run a bit amok once again. Administrators reported that since April 20, 2022, Defender has … Continue reading
Microsoft Security Update Revisions (April 19, 2022)
Brief addendum from last week. Microsoft has released some Microsoft Security Update revisions for April 19, 2022, which are changes to the documentation of various security updates. Here is an uncommented overview.
ESET finds 3 critical vulnerabilities in UEFI of Lenovo consumer notebooks
[German]Users of Lenovo notebooks should react. Security vendor ESET has just announced that it has discovered three vulnerabilities (CVE-2021-3970, CVE-2021-3971, CVE-2021-3972) in the UEFI of Lenovo consumer notebooks that are rated as highly problematic from a security perspective. The exploit … Continue reading
Free Decryptor for Yanlouwang Ransomware
[German]Security vendor Kaspersky has discovered a vulnerability in the encryption of the Yanlouwang ransomware. As a result of this vulnerability, the encryption of files can be cracked under certain circumstances. Anyway, a free decryptor for Yanlouwang ransomware is available. However, … Continue reading
7-Zip vulnerability CVE-2022-29072 *doesn't* allows system privileges
[German]A vulnerability CVE-2022-29072 (heap overflow) exists in the 7-Zip application up to version 21.07, which allows privilege escalation on Windows. This could allow an attacker to gain system privileges and then compromise the system at will. Here is some information … Continue reading