Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
SUNBURST malware: Analytic Tool SolarFlare, a 'Kill Switch' and EINSTEIN's fail
[German]Small additions in the matter of hacking of companies and US authorities by the SUNBURST malware delivered via update for the Orion software. There is an analysis tool SolarFlare, to determine what permissions the Orion software had. The domain of … Continue reading
SUNBURST malware was injected into SolarWind's source code base
[German]An analysis of the supply chain attack on the Orion product line of the US security vendor SolarWinds suggests that the attackers had access to the source code base. For months, they prepared the insertion of the Trojan, which acted … Continue reading
Microsoft revisions to various Office CVEs (December 15, 2020)
[German]Microsoft has published an overview of revisions of various CVEs as of December 15, 2020. I received the whole thing by mail last night, and I'm posting it here for your information.
News in the fight against SUNBURST infection, domain seized
[German]The knowledge about the cyber attack against US authorities and companies via the SUNBURST backdoor is growing. The U.S. State Department and other government agencies may have been hacked as well. Meanwhile, Microsoft and other industry partners have seized the … Continue reading
Thunderbird 78.6.0 released
[German]The developers of the Thunderbird email client have released Thunderbird 78.6.0 on December 15, 2020. This is a maintenance update for the 78 main version of the email client, which fixes bugs and closes security holes.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Sloppiness at SolarWinds responsible for compromised software?
[German]Was sloppiness or at least a lax security culture at the US software manufacturer SolarWinds possibly responsible for their compromised updates of the Orion products, that has been shipped for months with the SUNBURST Trojan? This Trojan has been used … Continue reading
UK Tax Relief Company Exposes Customers' Personal Information In Data Leak
Security Researchers from Website Planet found, that an UK Tax Relief Company Exposes Customers' Personal Information due to a misconfigured web server. Here are a few details about this Data Leak.
SolarWinds products with SunBurst backdoor, cause of FireEye and US government hacks?
[German]Suspected state hackers have succeeded in tampering with SolarWinds' widely deployed networking and security products worldwide. Through a supply chain attack, a Trojan or the SunBurst backdoor was rolled out with a software update.
US Treasury and US NTIA hacked
[German]According to a report, the U.S. Treasury Department and another U.S. agency responsible for Internet and telecommunications have fallen victim to a sophisticated cyber attack. Suspected government hackers were able to pull documents. Addendum: It seems, that a backdoor in … Continue reading
IoT Inspector and the 7,339 vulnerabilities under the Christmas tree
[German]Security experts from IoT-Inspector have tracked down a total of 7,339 dangerous vulnerabilities in popular gifts such as connected children's toys, smart speakers or hobby drones. In terms of security, that's likely to be the collective horror under the Christmas … Continue reading