Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
What is behind DKIM, SPF and DMARC?
[German]Email security for Security Operations Center (SOC) teams. What is hidden behind terms such as DKIM, SPF and DMARC, which are used to secure email communication?
38C3: Bitlocker bypassed via vulnerabilities (Dec. 2024)
[German]A small addendum from the weekend – at the 38C3 congress of the Chaos Computer Club, Thomas Lambertz, a security expert, showed how Microsoft's Bitlocker encryption can be circumvented by "downgrading" a patched vulnerability. The way in which secret services … Continue reading
Vulnerabilities in G DATA Business software; fix with version 15.8.333
[German]Blog reader Fabian D. accidentally discovered a Privilege Escalation vulnerability in the G Data Security Client at the beginning of April 2024 and was then able to prove a Privilege Escalation vulnerability in the G Data Management Server during targeted … Continue reading
CISA warnings: Vulnerabilities in Windows Kernel, Cleo etc
[German]The US cyber security authority CISA has added further entries to its vulnerability catalog. It warns of the Adobe ColdFusion vulnerability CVE-2024-20767, the Windows kernel vulnerability CVE-2024-35250 and vulnerabilities in the Cleo software. The vulnerabilities are known to be exploited.
BlackBerry sells XDR solution Cylance to Artic Wolf
[German]A short message for readers who may rely on BlackBerry's XDR solution Cylance. News has reached me a couple of days ago, that BlackBerry is selling this asset to market leader Artic Wolf – a mutual agreement to transfer has … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
VW data leak: terabytes of location data from electric vehicles on AWS
[German]The VW Group is at the center of a data scandal in which recorded location data from 800,000 electric vehicles amounting to terabytes was accessible from the cloud. On the one hand, the incident shows what data vehicle manufacturers collect. … Continue reading
PayPal fraud via "guest account"; German consumer advice center warns
[German]The German consumer advice center of North Rhine-Westphalia warns of a nasty scam in which criminals abuse PayPal's ability to pay via a guest account. Anyone with a bank account can fall victim to this scam – regardless of whether … Continue reading
FortiOS version 7.4.6 – unfixed bug deletes SD-WAN rules
[German]Small addendum for administrators of FortiOS systems. A few days ago, a fix was released for a known bug in FortiOS version 7.4.6. A reader pointed it out to me.
Discord Database probably leaked – accounts blocked (Dec. 2024)
[German]Last Friday (20. Dec. 2024) some Discord users are founding out that their Discord accounts have been locked. The received a mail about that and a password reset helps to regain access to the service. If my information is correct, … Continue reading
Critical LDAP vulnerability in Windows (CVE-2024-49112)
[German]A short addendum from the December 2024 patchday. On December 10, 2024, Microsoft published a critical vulnerability (CVE-2024-49112) in the Lightweight Directory Access Protocol (LDAP). This enables remote attacks on Windows clients and servers, but has been patched. However, there … Continue reading
Posted in ios, Security, Update, Windows
Tagged Patchday 12.2024, Security, Update, Windows
4 Comments