Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
WordPress: Vulnerability in Ninja Forms Plugin
[German]There is a new vulnerability in the WordPress plugin Ninja Forms that affects all versions up to 3.6.3. An SQL injection is potentially possible via the vulnerability, so that database queries via input fields are conceivable. The plugin provider released … Continue reading
State sponsored hackers from North Korea target IT supply chain
[German]The state hacker group Lazarus, attributed to North Korea, seems to have changed its strategy and is trying to attack software supply chains. It is possible that many dependent systems could be infected via such supply chain attacks. Security researchers … Continue reading
Russian APT29 group Nobelium hacked at least 14 IT service providers, according to Microsoft
[German]In this blog post, Microsoft accuses state-related Russian hackers from the APT29 group Nobelium of successfully attacking and hacking at least 14 IT service providers in 2021. The attacks consisted of phishing and password spraying campaigns. In the campaigns, the … Continue reading
Mozilla blocks malicious add-ons with 455,000 users
[German]Two add-ons named Bypass and Bypass XM, which together have about 455,000 users, have been blocked by Firefox developers. The background is that the add-ons abused the Firefox proxy API to redirect websites or block updates. Here is some information … Continue reading
Attacks on cloud software supply chains exacerbate enterprise threat landscape
[German]Security vendor Palo Alto Networks presented its Unit 42 Cloud Threat Report 2H 2021 before the end of last month. The conclusion is that attacks on software supply chains in the cloud are exacerbating the threat situation for companies. To … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Edge 95.0.1020.30
[English]Microsoft has released a security advisory for the Edge browser as of October 21, 2021, updating the browser to version 95.0.1020.30. The update also closed security vulnerabilities reported to the Chromium team.
Chrome 95.0.4638.54
[English]Google has released a security update of Google Chrome 95.0.4638.54 for Windows, Mac and Linux as of October 19, 2021. It is a security update that closes vulnerabilities rated as high. Here is a brief overview.
Former malware distributor buys ExpressVPN, CyberGhost etc.
[German]Another article about a topic, that has been floating around for a few days, but due to time constraints has not yet migrated to the blog. If you use a VPN provider, you have to trust 100% that it is … Continue reading
Database with IDs of all Argentines hacked
[German]We have to push ahead with digitization, they sey. We hear less about security, but they say also that data is the new oil. A hacker took this literally and penetrated the IT network of the Argentine government. He was … Continue reading
Irish DPC sends noyb a take down notice on a published Facebook draft decision
[German]The Irish data protection authority DPC has sent the data protection organization noyb, founded by Max Schrems in Austria, a so-called take down notice. This is a request to take down a published document from the organization's website. The document … Continue reading