Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Sophos XG – Mail delivery blocked by antivirus pattern (Nov. 25, 2021)
[German]Brief note to administrators who use Sophos XG as a firewall and security solution. On November 25, 2021, there was probably an update to the antivirus pattern that blocked at least one user from sending mail. The IT administrator in … Continue reading
WordPress Plugin Hide My WP with SQL Injection Vulnerability
[German]One of the most popular "security" plugins for WordPress, Hide My WP, has just attracted negative attention due to a fat SQL injection vulnerability. Another bug allows an attacker to simply disable the plugin
RATDispenser: JavaScript-Loader dispenses Remote Access Trojaners (RAT) in Windows
[German]Another short addendum concerning security, which came to my attention the other day. Security researchers at HP Thread-Research have discovered a loader written in JavaScript that installs Remote Access Trojans (RATs) on Windows systems. The developer now appears to be … Continue reading
Windows Server 2019/2022: Microsoft Defender for Endpoint fails after Nov. 2021 updates
[German]Short message for administrators who are already productive with Windows Server 2019 or even Windows Server 2022 and use Microsoft Defender for Endpoint as virus protection. Microsoft has admitted that after installing certain updates on these Windows Server versions, problems … Continue reading
Posted in issue, Security, Update, Windows
Tagged Defender, Patchday 11.2021, Update, Windows Server
Leave a comment
Windows attacks via 0-day in installer and vulnerability in MSHTML
[German]Attackers are exploiting a now-patched CVE-2021-40444 vulnerability in Microsoft's MSHTML routines to attack Windows systems. And the 0-day vulnerability in Windows Installer that I addressed here on the blog the other days is being exploited by malware for privilege escalation. … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
GoDaddy hack also affects hosting resellers
[German]A few days ago, the US registrar and hoster GoDaddy made public a major hack in which the attacker had access to 1.2 million customer records. My mind immediately went "is HostEurope as a subsidiary also affected". In the meantime, … Continue reading
Black Friday spam campaigns in the starting blocks
[German]November 26, 2021 is Black Friday – almost everything is free – and some people's brains are also out. This also attracts cyber criminals, who increasingly attack consumers with online shopping scams. The telemetry data from Bitdefender Labs also documents … Continue reading
Vulnerability in MediaTek chips used in Android smartphones
[German]Security researchers from Check Point have discovered a vulnerability in an Android APU, the APU is the AI Processing Unit in MediaTek chips. The security researchers warn that users can be eavesdropped via the audio processor. The Mediatek chips are … Continue reading
YARP: Yet Another Reverse Proxy
[German]Today a short info splitter for tinkerers among the blog readership. With YARP (stands for Yet Another Reverse Proxy) a free framework is available to generate a reverse proxy. The framework has been provided by Microsoft teams.
0-Day LPE Vulnerability in Windows Installer (Nov. 2021)
[German]A security researcher has found a 0-day vulnerability in Windows Installer that allows a local attacker to gain administrative privileges. The 'Windows Installer Elevation of Privilege' vulnerability CVE-2021-41379 has been patched in November 2021. But there is a workaround, the … Continue reading