Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Windows 7 SP1/Server 2008/R2: Extended Support 2021 – Part 2
[German]In my blog post Windows 7 SP1: ESU Support for 2021 – Part 1 I had pointed out that from January 2021 a new ESU license is required to receive further security updates for this operating system. Those who do not … Continue reading
Posted in Security, Update, Windows
Tagged 0patch, ByPassESU, Security, Update, Windows 7, Windows Server 2008 R2
Leave a comment
0patch fixes CVE-2020-1013 in Windows 7/Server 2008 R2
[German]ACROS Security has released a micropatch for the CVE-2020-1013 (WSUS Spoofing, Local Privilege Escalation in Group Policies) vulnerability for Windows 7 and Server 2008 R2 (without ESU license). Here is some information about it.
Windows 7 SP1: ESU Support for 2021 – Part 1
[German]Small reminder for people still running systems with Windows 7 SP1. In January 2021 the support extension for the second year ends. So a little reminder today to renew the ESU license – and I've found a source that offers … Continue reading
Posted in Security, Update, Windows
Tagged ESU, Security, Update, Windows 7, Windows Server 2008R2
5 Comments
Exploit for not full patched Windows 0-day vulnerability CVE-2020-0986
[German]Security researchers have proven that a vulnerability patched in Windows in July 2020 is still exploitable. The patch does not close a vulnerability sufficiently, so there is another way to exploit it.
Microsoft's hints for victims of cyberattacks (including Sunburst)
[German]Microsoft published two blog posts from its Detection and Response Team (DART). The posts include advice for incident responders on recovering from systemic identity compromises (after Solarigate) and what to do if infected with the Sunburst Trojan.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
VPN services seized by law enforcement officials
[German]Law enforcement officials have seized and shut down, in an international collaboration, VPN services that provided safe havens for cybercriminals. The VPN services were used to conduct ransomware attacks, web skimming operations, spearphishing and account takeovers.
Worldwide UDP:443 (EDT) DDOS on Citrix (NetScaler) Gateway
[German]Brief information and a question to the Citrix NetScaler administrators. Are you noticing increased UDP:443 (EDT) access to Citrix Netscaler gateway? Currently there is information that a massive DDoS campaign against Citrix NetScaler gateways has been running since December 19, … Continue reading
Digital doorbells for consumer and its security
[German]In the consumer sector, intelligent doorbell cameras have been davertised and have also been bought heavily. Now someone has taken a closer look at some of these "doorbells" from security aspects … and found the expected results.
Microsoft says: Don't delete expired root certificates in Windows
[German]I'm bringing up again a hanging topic 'expiring certificates'. At the end of the year, some root certificates expire. However, these may not be deleted under Windows under any circumstances, since otherwise it comes to problems.
New Emotet Campaign during the Holidays 2020
[German]Brief security information to the readership. After being somewhat quiet over the past few weeks, a new malware/ransomware campaign from the Emotet group seems to be ramping up for the holidays.