Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Microsoft explains SMB signing configuration
[German]Another brief information for administrators in the enterprises. Microsoft enables SMB signing for the relevant network protocol. This is to ensure the security of the communication. However, the whole thing is probably a bit complex, if I interpret this correctly. … Continue reading
T-Mobile (USA) investigates possible data leak involving 100 million customer records
[German](US) mobile carrier T-Mobile is investigating whether there was a data leak or hack. This is because 100 million customer records, some of which reveal very detailed information, were offered in an underground forum, allegedly from this provider. The provider … Continue reading
Windows 365: Logon data can be dumped in plain text
[German]Microsoft only introduced its Windows 365, which runs Windows 10 on Azure, at the beginning of August 2021 and also released it for customers. There is also a test version that interested parties can take a look at. Now, security … Continue reading
Vice Society: 2. Ransomware gang uses Windows PrintNightmare vulnerability for attacks
[German]In my blog post Ransomware gang uses PrintNightmare to attack Windows servers, I had reported about the first case where the PrintNightmare vulnerability was used to attack Windows. Now Talos Security has already come across the second case, reporting that … Continue reading
Kaseya: Decryption key revealed, backup update closes vulnerabilities
[German]Small article at the end of the week, concerning the US vendor Kaseya. After the supply chain attack on Kaseya RMI software and encryption of numerous customer systems, a decryption key has surfaced in an underground forum. In addition, a … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Attacks on Exchange Server via ProxyShell vulnerability (8/13/2021)
[German]I'm bringing this up again before the weekend, even though the readership of this blog is probably well informed and keeps the Exchange servers up to date with the latest patches. It's Friday the 13th and we're about to hit … Continue reading
Microsoft Security Update Revisions & August 2021 patchday security fixes
[German]Microsoft has closed a number of vulnerabilities with updates on patchday (August 10, 2021). I have an overview that I am posting for the sake of completeness. In addition, Microsoft has distributed two security update revisions in the days in … Continue reading
Microsoft and Tenable share tips for hardening the IT environment
[German]Both Microsoft and the vendor Tenable have addressed the question of how to better protect corporate environments against cyberattacks and ransomware infections in blog posts. I have summarized the relevant information in the following post.
Ransomware gang uses PrintNightmare to attack Windows servers
[German]It happened, there is the first case of a ransomware gang using the Windows PrintNightmare vulnerability to attack Windows servers. In July 2021, security vendor Crowdstrike was able to thwart a ransomware attack against a target in South Korea. During … Continue reading
Windows PrintNightmare, next round with CVE-2021-36958
[German]Another small addendum from the August 2021 patchday regarding the PrintNightmare print spooler service vulnerability. Microsoft did release a patch that is supposed to fix the vulnerability. But I had already pointed out in my Patchday blog posts that this … Continue reading