Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Microsoft Edge 94.0.992.31
[German]Following the Chrome update (to version 94.0.4606.61), Microsoft has also updated the Edge browser to version 94.0.992.31 as of September 24, 2021 via Windows Update. The security update fixes the vulnerability CVE-2021-37973, which has already been fixed in Google Chrome. … Continue reading
How effective is Apple's iOS App Tracking Transparency (ATT) feature?
[German]Apple has integrated the "App Tracking Transparency" (ATT) feature since iOS 14.5. This is supposed to give users the choice regarding the transparency of tracking by third-party apps. The whole thing sounds like an important step in protecting user privacy. … Continue reading
Critical Vulnerability CVE-2021-22005 in VMware vCenter
[German]VMware has published information on a total of 19 vulnerabilities in the products VMware vCenter Server (vCenter Server) and VMware Cloud Foundation (Cloud Foundation) [VMW2021a] as of September 21, 2021. Some of these are critical vulnerabilities – specifically, the CVE-2021-22005 … Continue reading
Microsoft tries to register autodiscover domains
[German]After a design error in the Autodiscover protocol used by Microsoft Exchange became public, Microsoft is now rushing to register all Autodiscover domains. This is because clients may leak access data from Exchange accounts to such Autodiscover domains via the … Continue reading
Chrome 94.0.4606.61 fixes 0-day
[German]Google has surprisingly released the stable version of Google Chrome 94.0.4606.61 for Windows, Mac and Linux on September 24, 2021. It is a security update that closes a 0-day vulnerability. Here is a brief overview of what problem has been … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Vulnerability in 100 million IP cameras from Hikvision and OEMs
[German]A command injection vulnerability exists in the web server of some Hikvision products due to insufficient input validation. Unauthorized persons could send messages with malicious commands to the web server via this vulnerability. The manufacturer has provided a firmware update … Continue reading
Microsoft Exchange autodiscover design flaw leaks credentials to third party instances
[German]Security researchers at Guardicore have discovered a design flaw in Microsoft Exchange autodiscover protocol that allows attackers to use external autodiscover domains to harvest domain credentials. This is possible because autodiscover domains outside the user's domain (but still in the … Continue reading
Windows PrintNightmare: Status, issues and workarounds (Sept. 22, 2021)
[German]Since the patchday of September 14, 2021, when further security updates to close the PrintNightmare vulnerabilities are delivered, there are massive problems with network printers in some environments. The background is that Microsoft implemented certain security measures in August and … Continue reading
Chrome 94.0.4606.54
[German]Google has released the stable version of Google Chrome 94.0.4606.54 for Windows, Mac and Linux on September 21, 2021. It is a security update that closes 19 vulnerabilities. Here's a quick overview of what to expect from the update.
Healthcare facilities prime target for ransomware attacks
[German]Healthcare facilities are likely to be the main target of ransomware attacks in 2020, as Unit 42 of security firm Palo Alto Networks found out and published in a Thread report. It is believed that cyber criminals targeted the facilities … Continue reading