Category Archives: Security

0-day vulnerability in IE 11 allows to steal files

Posted on 2019-04-13 by guenni

[German]There is a vulnerability in Microsoft Internet Explorer that allows attackers in all versions of Windows to access and steal files. However, Microsoft has no ambitions to patch the vulnerability immediately.

Posted in browser, Security, Windows | Tagged , | Leave a comment

Patchday Microsoft Office Updates (April 9, 2019)

Posted on 2019-04-12 by guenni

[German]As of April 9, 2019 (second Tuesday of the month, Patchday at Microsoft), Microsoft has released several security updates for supported Microsoft Office versions and other products.

Posted in Office, Security, Update | Tagged , , | Leave a comment

Patchday Windows 10-Updates (April 9, 2019)

Posted on 2019-04-10 by guenni

[English]On April 9, 2019 (second Tuesday of the month, Patchday at Microsoft), several cumulative updates were released for the supported Windows 10 builds. Here are some details about each update.

Posted in Security, Update, Windows | Tagged , , , , , , , , | Leave a comment

Patchday: Updates for Windows 7/8.1/Server (April 9, 2019)

Posted on 2019-04-10 by guenni

[German]On April 9, 2019, Microsoft released various (security) updates for Windows 7 SP1 and other updates for Windows 8.1 as well as the corresponding server versions. Here is an overview of these updates.

Posted in Security, Software, Windows | Tagged , , , , , , , | 4 Comments

Sophos false alarms (April 2019)

Posted on 2019-04-08 by guenni

Administrators using Sophos security solutions may have been bothered by a number of false positives alarms within the recent days. If this is fixed now, the reason is known.

Posted in Security | Tagged | 1 Comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Hackers are Loving Windows PowerShell

Posted on 2019-04-04 by guenni

PowerShell is available as a script environment on all Windows systems and is not only popular with administrators. Attackers also appreciate PowerShell to run malicious scripts in Windows environments.

Posted in Security, Windows | Tagged , , | Leave a comment

0-day vulnerabilities in IE and Edge

Posted on 2019-04-03 by guenni

[German]Current versions of Internet Explorer and Edge has 0-day cross-site scripting vulnerabilities that attackers can exploit to steal data from other tabs. Although the vulnerabilities were reported to the company 10 months ago, Microsoft hasn't reacted, so there are no … Continue reading

Posted in browser, Security, Software | Tagged , , | Leave a comment

Security: Windows-Spoofing via .reg files

Posted on 2019-04-02 by guenni

[German]Windows users can be spoofed into importing .reg files, as I just verified. You can send manipulated messages to the user via the dialog box shown before a .reg file is imported.

Posted in Security, Windows | Tagged , | Leave a comment

Oracle mail warns about a critical Java 8 update coming

Posted on 2019-04-01 by guenni

[German]Oracle's sales representatives has sent a mail informing customers about a upcoming critical security update for Java SE 8, that may causing causing trouble for corporate users. Since January 2019, commercial users are only allowed to install Java 8 updates … Continue reading

Posted in Security, Software | Tagged , | Leave a comment

0-day vulnerability in TP-Link SR20 router

Posted on 2019-03-30 by guenni

There is a 0-day vulnerability in the TP-Link SR20 SmartHome router that enables arbitrary code execution (ACE).

Posted in Security | Tagged | Leave a comment