Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Exchange vulnerabilities: Will we see Hafnium II?
[German]Are we soon seeing a second hafnium disaster, in which Exchange servers are attacked and taken over via vulnerabilities? At the BlackHat 2021 conference, security researcher Orange Tsai spoke about new vulnerabilities in Microsoft Exchange and, in addition to old … Continue reading
Mainboard manufacturer GIGABYTE victim of RansomEXX ransomware
[German]Taiwan-based motherboard manufacturer GIGABYTE has fallen victim to a ransomware attack by the RansomEXX group. The RansomEXX gang is now threatening to make captured files in the amount of 112 GBytes public unless a ransom is paid.
0patch fix for Windows PetitPotam 0-day vulnerability (Aug. 6, 2021)
[German]Security researchers recently disclosed a new attack vector called PetitPotam. Using an NTLM relay attack, any Windows domain controller can be taken over by attackers. Now, ACROS Security has presented a free 0Patch solution for various Windows Server versions that … Continue reading
Amazon Kindle: Vulnerability allowed Amazon account takeover
[German]Security researchers from Check Point have found a dangerous vulnerability in the eBook reader Amazon Kindle. Attackers could have used malicious code to take over the linked Amazon account of the device owner or read out his data. In the … Continue reading
Edge 92.0.902.67
[German]Microsoft has updated the Edge browser to version 92.0.902.67 as of August 5, 2021. The release notes state that security updates to the Chromium browser have been included. Microsoft emailed me the list of fixed vulnerabilities in Chromium.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
0patch fix for new Windows PrintNightmare 0-day vulnerability (Aug. 5, 2021)
[German]In the blog post PrintNightmare: Point-and-Print allows installation of arbitrary files I had reported about a new vulnerability in Windows. A remote print server, which can be reached by unauthorized persons, allows to install arbitrary malicious files on the clients … Continue reading
INFRA:HALT: Vulnerabilities in TCP/IP stack endanger Operational technology systems (OT)
[German]Security researchers from Forescout and JFrog have just made public the vulnerabilities in the NicheStack TCP/IP library grouped under the term INFRA:HALT. They had come across it while analyzing the library. This NicheStack TCP/IP library is used in products (industrial … Continue reading
ProtonMail and the user data transfer to the USA
[German]The Swiss-based ProtonMail e-mail service offers end-to-end encryption of mails before they are sent to ProtonMail's server. ProtonMail is operated by Proton Technologies AG, which is based in Plan-les-Ouates (Canton Geneva). Its servers are located in two locations in Switzerland, … Continue reading
NSA and CISA: Kubernetes Hardening Guidance
[German]The NSA (National Security Agency) and CISAgov have published Kubernetes configurations and recommendations for securing Kubernetes environments against cyber attacks. Understanding the options for building and maintaining a secure Kubernetes cluster is key to protecting your data and resources.
NSO spyware Pegasus found on smartphones of French journalists
[German]The French national security agency Anssi confirmed that the Pegasus spy program of the Israeli NSO group was found on journalists' smartphones. This is the first time that the findings of the Pegasus project have been confirmed by an independent … Continue reading