Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Babuk gang uses ProxyShell vulnerability in Exchange for ransomware attacks
[German]Cisco Talos security researchers have discovered that the Babuk ransomware gang is using the ProxyShell vulnerability in Microsoft Exchange to install a web shell called "China Chopper". A Babuk ransomware partner named "Tortilla" probably joined the group in October and … Continue reading
Database with millions of data of VPN users unprotected on the Internet (Oct. 2021)
[German]Anyone who uses VPN providers must be able to rely on their security and integrity. Security researcher Bob Diachenko of comparitech has recently come across an unprotected database (no password) on the Internet containing more than 300 million records with … Continue reading
Firefox 94/94.0.1 and 91.3.0esr
[German]Mozilla's developers have released the version 94.0.0 and 91.3.0esr of the Firefox browser on November 2, 2021. And then the 94.0.1 was immediately added to correct a bug.
Thunderbird 91.3.0
[German]The developers of the Thunderbird email client have released Thunderbird 91.3.0 on November 3, 2021. This is a maintenance and security update for the 91 development branch, which makes minor fixes. In particular, a number of vulnerabilities rated as high … Continue reading
2FA authentication for Google accounts from November 9, 2021 required
[German]Google is making two-factor authentication (2FA) mandatory for its Google accounts starting November 9, 2021. In May 2021, Google had announced this move in this blog post. I have been offered the 2FA protection on my Android smartphone on November … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Microsoft Security Update Releases – October 2021
[German]Microsoft has published some Security Update Releases notifications and also revisions in October 2021. Since I have not been able to cover everything so far, I am summarizing the relevant notifications in a collective post. The security information ranges from … Continue reading
SolarWinds attackers target Microsoft partners – lack of basic cyber-security
[German]A few days ago, more Russian cyberattacks against U.S. companies became known. These are patterned after the SolarWinds attack, this time targeting Microsoft partners. Security researcher Tenable criticizes cloud service providers for ignoring basic security practices, thus abetting these attacks.
Surface Pro 3 and the (Card Blanche) TPM vulnerability
[German]Here is another addendum to the topic "we are becoming more secure with hardware and software". Recently, Microsoft had to admit a TPM vulnerability (Card Blanche) for its Surface Pro 3 and sent a corresponding security notification around. In addition, … Continue reading
Windows WPBT vulnerability allows Rootkit installation
[German]I would like to once again flush up a security issue that affects users of Windows systems. In September, it became known that a vulnerability in WPBT allows attackers to install a rootkit on Windows machines. There is virtually nothing … Continue reading
Edge 95.0.1020.40
[German]Microsofthas released a security advisory for the Edge browser as of October 29, 2021, updating the browser to version 95.0.1020.40. The update also closed vulnerabilities reported to the Chromium team.