Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Ukraine Doxing des FSB members, dismantles bot farms, telecom operator hit by cyber attack
[German]Ukrtelecom, the largest fixed-line provider in Ukraine, was crippled for hours by a cyber attack, which also affected the internet. Furthermore, Ukraine has been responsible for botnet farms designed to spread disinformation since the beginning of the war. Military intelligence … Continue reading
Okta admits a mistake regarding disclosure in "Lapsus$ hack"
[German]This is the "best" image that the authentication service Okta is giving off right now. The Lapsus$ gang had claimed to have hacked Okta, which possible could have threatened hundreds of customers and made them victims of attacks. But it … Continue reading
Microsoft Security Update Revisions (March 25, 2022)
Microsoft has released several revisions for security updates on 25 March 2022. The revisions address changed vulnerability assessments. Here is an uncommented overview.
Fix for vulnerability CVE-2022-104 in Sophos Firewall (v18.5 MR3)
[German]A security researchers have found a vulnerability CVE-2022-104 (authentication bypass) in Sophos firewalls (v18.5 MR3 and older) that allows authentication bypass. Attackers could thus take over the firewall and execute malicious code remotely. However, Sophos has since released an update … Continue reading
"Browser in the browser" Phishing
[German]A security researcher has recently introduced a technique to make intercepting credentials via phishing even more efficient. He calls the technique BitB, short for "browser in the browser". A fake browser window is displayed within a real login page in … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Anonymous has hacked Central Bank of Russia, 2nd hack of state-owned VGTRK media group?
[German]The hacker group Anonymous has claimed responsibility for a hack of the Central Bank of Russia in which a lot of data was captured. The group has now published 28 GB of this data. A second hacker group calling itself … Continue reading
Microsoft Edge 99.0.1150.55 fixes vulnerability CVE-2022-1096
[German]Microsoft has updated the Chromium Edge browser to version Edge 99.0.1150.55 as of 26 March 2022. This is a maintenance update that closes a number of vulnerabilities, including the highly rated and exploited vulnerability CVE-2022-1096. Microsoft has sent out an … Continue reading
Preliminary agreement between EU and US on the Trans-Atlantic Data Privacy Framework
[German]The European Union (EU) and the USA seem to have reached a preliminary agreement on the exchange of user data (Trans-Atlantic Data Privacy Framework) between these regions. The successor agreement is necessary because the European Court of Justice overturned two … Continue reading
Kaspersky on US FCC list & banned from HackerOne's bug bounty
[German]Neue Entwicklung in Sachen Umgang mit dem aus Russland stammenden Sicherheitsunternehmen Kaspersky. Nachdem dessen Produkte bereits in US-Behörden nicht mehr eingesetzt werden durften, hat jetzt die US-Behörde FCC die Firma auf den Index gesetzt. Und bei der Plattform HackerOne ist … Continue reading
Chrome 99.0.4844.84 fixes 1 vulnerability
[German]Google has released updates to Google Chrome 99.0.4844.84 for Windows and Mac on the desktop as of 25 March 2022. The new version a security vulnerability that is rated high. In addition, there Chrome 98.0.4758.141 in the Extended Stable Channel … Continue reading