Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Blacksmith: New Rowhammer variant allows to bypass DDR4 memory protections
[German]Security researchers from ETH Zürich has developed a new Rowhammer technique – using fuzzing – to bypass DDR4 memory protections and flip memory cells. That technique, called Blacksmith, allows an unprivileged process to change or corrupt data stored in RAM … Continue reading
Emotet malware is back
[German]The Emotet malware (Trojan and ransomware) was quite successful and infected numerous systems. Law enforcers had managed to hack the botnet's infrastructure for distributing the malware. As of April 25, 2021, Emotet malware was automatically removed from Windows machines. However, … Continue reading
Chrome 96.0.4664.45
[German]Google has released an update to Google Chrome 96.0.4664.45for Windows, Mac and Linux (and Android) on November 15, 2021. It is a new development branch, but which also closes some vulnerabilities. Here's a brief overview.
Trend Micro Exposes Void Balaur Cyber Mercenary Group
[German]It's a trend that's been around for a while: fit IT professionals are hiring cyber mercenaries to carry out cyber attacks. Trend Micro has now exposed a cyber mercenary group called "Void Balaur." New research details the modus operandi of … Continue reading
FBI email server hacked, distributes fake cyberattack warnings
[German]It's been going around Twitter for a few hours now: the Federal Bureau of Investigation's (FBI) email servers were hacked. The attackers then sent out hundreds of thousands of urgent warnings about alleged cyberattacks to numerous recipients. Administrators struggled to … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Booking.com hack from 2016 probably by US intelligence agency employees
[German]In 2016, the hotel reservation platform booking.com, which is also quite popular in Germany, suffered a data protection breach caused by a hack, for which the platform was not responsible (access data of hotel employees was stolen). Because the incident … Continue reading
Kisters AG victim of ransomware attack (Nov. 10/11, 2021)
[German]The medium-sized an German based company Kisters AG, which develops software solutions for sustainable resource management and now has numerous branches worldwide, has fallen victim to a ransomware attack. Following the attack on November 10/11, 2021, all systems are now … Continue reading
0patch fixes LPE Vulnerability (CVE-2021-34484) in Windows User Profile Service
[German]There is an incompletely patched Local Privilege Escalation vulnerability (CVE-2021-34484) in the Windows User Profile Service. Although there has been an update for all Windows versions since August 2021, it does not fully patch the vulnerability. ACROS Security has therefore … Continue reading
CERT warning: Compromised Exchange servers are misused for email attacks (Nov. 2021)
[German]Security researcher, and the Federal Office for Information Security (BSI), and CERT-Bund have issued a warning. These organizations are currently (Nov. 2021) observing a significant increase in e-mail attacks. The two organizations assume that these e-mails are sent from compromised … Continue reading
14 Vulnerabilities in BusyBox
[German]Security researchers from JFrog and Claroty Team82 have found 14 vulnerabilities in the popular BusyBox tool. All vulnerabilities were confidentially reported to the developer of BusyBox and fixed in version 1.34.0, which was released on August 19. The vulnerabilities could … Continue reading