Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Netgear router easily hackable – update your firmware
German Netgear routers has (again) several vulnerabilities in the firmware that can be used to overtake devices without a password. However, firmware updates are available to close the vulnerabilities.
LibreOffice Remote File Disclosure Vulnerability CVE-2018-6871
[German]In LibreOffice there is a Remote Arbitrary File Disclosure vulnerability (CVE-2018-68719), allowing attackers to send files to the Internet using prepared table documents. This Remote Arbitrary File Disclosure vulnerability has been closed in LibreOffice 5.4.5/6.0.1.
VPN vulnerability in Cisco ASA software used in the wild
[German]Cisco's ASA software has a critical bug in the VPN feature that is already exploited by hackers. There is a firmware update from Cisco which should be installed as soon as possible.
Does Hotspot Shield leaks user data?
[German]A security expert has discovered that the VPN service Hotspot Shield, which is supposed to guarantee privacy, leaks sensitive information about the user.
Fire Hazard: Recall of Lenovo ThinkPad X1 Carbon laptops
[German]Lenovo recalls certain models of its ThinkPad X1 Carbon notebook series due to fire hazard. However, only devices of the 5th generation that were manufactured between December 2016 and October 2017 are affected.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Windows 10: Bypassing Controlled Folder Access Anti-Ransomware Protection
[German]In Windows 10 Fall Creators Update (V1709) Microsoft introduced Windows Defender Folder Access as a protection against Ransomware. Nor a security researcher has bypassed this protection using OLE. Microsoft don't see a vulnerability an will fix it in future versions … Continue reading
NSA exploits adapted for all Windows versions
[German]Last year, hackers from Shadow Brokers made various NSA tools public. Exploits such as EternalBlue were used in Ransomware attacks such as WannaCry, NotPetya and Bad Rabbit. A security researcher has now taken a closer look at other exploits and … Continue reading
WordPress 4.9.4
A few hors ago we have had the release of WordPress 4.9.3. Now the developers has released WordPress 4.9.4. It's also a maintenance update that fixes an error (in automatic backup). The changes are described in this changelog page.
Meltdown/Spectre Test Tools Overview
[German]What about test tools for Meltdown and Spectre mitigations under Windows at February 2018? Within this blog post I take a look at several test tools for Windows and introduce two more test tools from Germany.
Malware using Meltdown and Spectre attacks under develoment – Windows Defender quarantines PoC tools
[German]Currently, there are growing indications that we could experience side channel attacks on computer systems using Meltdown and Spectre vulnerabilities in the near future.