Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
0patch fixes CVE-2020-1048 in Windows 7/Server 2008 R2
[German]ACROS Security has released a micropatch for the Windows Print Spooler Elevation of Privilege vulnerability CVE-2020-1048 in Windows 7 and Server 2008 R2 (without ESU license).
Posted in Security, Windows
Tagged 0patch, ESU, Security, Windows 7, Windows Server 2008 R2
Leave a comment
Warning: Infected Cookie Consent logo delivers Ransomware
[German]An immediate warning: It seems that cyber criminals has obtained an old (orphaned) Amazon AWS S3 bucked used some times ago to host a Cookie Consent solution. Now the Cookie Consent logo delivered from the Amazon CDN contains a malware/ransomware … Continue reading
Chrome 83 with changes and security fixes released
[German]Google's developers have released the Chrome Browser in version 83 on 19 May 2020. The browser update now automatically uses DNS-over-HTTPS. The update also closes 83 security holes of earlier versions.
British airline EasyJet hacked, customer data leaked
[German] British airline EasyJet was the victim of a cyber attack. The attackers were able to extract customer data (such as e-mail addresses, travel data) from around nine million customers. There were also 2,000 credit card records among them. Addendum: … Continue reading
Security incident: Source Code for Mercedes OLU leaked
[German]There has been a security incident at Mercedes Benz. A Swiss engineer found a GitLab server where he could create an account and then access the source code of onboard logic units (OLUs). These OLUs are built into the new … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Windows: Reverse RDP attacks in third-party software possible
[German]A poorly patched vulnerability CVE-2019-0887 in Windows makes the systems vulnerable to attacks via third-party RDP applications. It could also allow a client used to establish the RDP connection to be attacked by malware on the remote machine.
Revil Ransomware hackers release first Trump files
[German]The REvil/Sodinokibi gang has seized files from the US law firm Grubman Shire Meiselas & Sacks and demanded a ransom. Since the law firm is not paying, the first e-mail about US President Donald Trump has now been published.
Vulnerabilities in Symantec Endpoint Protection
[German]There are serious vulnerabilities in older versions (before 14.3) of Endpoint Protection and Endpoint Protection Manager for Windows that allow the system to take over. Symantec has released updates for these products.
Three vulnerabilities in Sophos/Cyberoam firewall technology
[German]Security researchers have discovered three vulnerabilities in Cyberoam firewalls (owned by British company Sophos). The vulnerabilities leave millions of devices and, in principle, the entire network vulnerable to security attacks. The products are used in corporate networks and are accessible … Continue reading
Security: Finding Passwords in Windows Domains
[German]The takeover of a domain controller by stolen admin passwords is a popular approach of cyber criminals. I stumbled upon an article on Twitter, explaining where attackers could find passwords on SYSVOL and via GPO preferences.