Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
OMIGOD: IBM QRadar Azure vulnerable via CVE-2021-38647
[German]IBM warns that QRadar Azure warn is vulnerable to remote attacks via the OMIGOD vulnerability CVE-2021-38647. Remote attackers could execute arbitrary code. This would have a similar impact to the supply chain attack on Kaseya VSA, a remote management and … Continue reading
New Ransomware-as-a-Service (RaaS) Group Simplifies Cyber Extortion
[German]Ransomware groups are continuously developing their business models and also acting as service providers, offering their tools in return for a share of the profits. A new Ransomware-as-a-Service (RaaS) group is trying to simplify the cyber extortion business a bit … Continue reading
New variant of the banking Trojan Hydra targets European (Commerzbank) users
[German]At the end of September 2021, security provider Cyble published an alert. Its security team have discovered a new variant of the Hydra banking Trojan that is specifically targeting European users. Commerzbank customers seem to be one of these targets, … Continue reading
Edge 94.0.992.38 Security Update
[German]Microsoft has released a security advisory for the Edge browser on October 1, 2021, updating the browser to version 94.0.992.38. The update also closed Chromium team-reported security vulnerabilities.
Autodiscover password leak vulnerability known to Microsoft for 5 years
[German]Another brief post in which I revisit a topic from last week. I had reported that there is a vulnerability in the Autodiscover protocol, which is used by Microsoft Exchange, that reveals passwords. In the meantime, Microsoft is trying to … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Critical security update to Chrome 94.0.4606.71 (2021/09/30)
[German]Google has surprisingly released an update to Google Chrome 94.0.4606.71 for Windows, Mac and Linux on September 20, 2021. It is a security update that closes vulnerabilities rated as high. Some of the vulnerabilities are being exploited – here's a … Continue reading
Sept. 30, 2021: Will we see trouble with old Let's Encrypt certificates?
[German]Do you run websites that are signed via Let's Encrypt certificates? Then there could possibly be problems on September 30, 2021. This is because the root certificate used by Let's Encrypt to sign client certificates will lose its validity on … Continue reading
Amazon's newly introduced Astro Robot, a disaster?
[German]As of September 28, 2021, Amzon has introduced a home robot that goes by the name of Astro. The aim of this device is to provide assistance in the home. Keywords are home monitoring and assistance in conjunction with a … Continue reading
Windows 10: 0patch fix for MSHTML vulnerability (CVE-2021-40444)
[German]The vulnerability CVE-2021-40444 in the Windows MSHTML library has been known since September 7, 2021. Attackers try to attack Windows machines via this vulnerability using manipulated Office files. There are security updates from Microsoft, but not for older Windows versions. … Continue reading
WordPress DSGVO Plugin from legalweb.io hacked
[German]The GDPR plugin for WordPress from the provider legalweb.io has been hacked. WordPress installations that have used this plugin are considered compromised. Users are being redirected to malware sites. Here is a brief summary of what I am aware of … Continue reading