Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Google Chrome: Bug enables data theft
[German]In all Chromium browsers (Google Chrome, Edge, Opera) there is a fat bug CVE-2020-6519, which introduces a vulnerability that allows attackers to bypass the Content Security Policy (CSP) protection and steal data from website visitors.
Security: Vulnerabilities in Cisco products
[German]A brief overview of various vulnerabilities in Cisco products. The Cisco Unified IP Conference Station 7937G is vulnerable. And there are also vulnerabilities in AnyConnect (Windows).
Millions of IoT devices easily hackable
[German]Unpleasant, but not surprising, findings from the Def Con 2020: the vast majority of Internet of Things (IoT) devices are open like a hole and easily hackable. Only idiots, naive people, and hasaders use such devices with (unsecured) access from … Continue reading
Hundreds of US apps with government tracking capabilities
[German]A new report reveals an unpleasant discovery. Apparently hundreds of apps are contaminated with frameworks that allow for government monitoring. It involves the US company Anomaly Six, which has ties to the military and intelligence community. The US contractor obtains … Continue reading
TeamViewer: Patch closes vulnerability CVE-2020-13699 on PC
[German]There was a vulnerability in older versions of the TeamViewer remote access software. This allowed third parties to establish a connection to the respective PC unnoticed. The vulnerability has been fixed by a patch.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Reddit hacked – Sub-Reddits defaced
[German]Hackers have succeeded in hacking the platform reddit.com in a coordinated action. After that, slogans for a re-election of Trumps were displayed in the Sub-Reddits.
Windows Print Spooler bug allows malware admin privileges
[German]Security researchers have found a way to abuse the print spooler in Windows and give programs administrative privileges. This can be exploited by malware to implant itself on the system. There is no patch for this bug yet, as the … Continue reading
Attacker can abuse Microsoft Team Updater to install Malware
[German]The Updater from Microsoft teams can be misused by hackers as Living off the Land-Binary (LoLBin) to install malware remotely on the user's system. Microsoft's efforts to eliminate this vulnerability work to some degree, but ultimately cannot stop attackers from … Continue reading
Android: Preinstalled malware found on subsidized US smartphones
[German]Security researchers from Malwarebytes have found Malware on state-subsidized Android smartphones. The malware was pre-installed on the state sponsored devices.
Defender blocks redirected Microsoft hosts entries – Part 3
[English]Microsoft has begun to block redirects in the Windows native hosts file that affect Microsoft sites in its antivirus products such as Microsoft Defender. The redirects are flagged as malicious (as HostFileHijack). I already mentioned that in part 2 of … Continue reading