Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Microsoft fixes critical Malware Protection Engine vulnerability
[German]Microsoft has acted quickly to a critical vulnerability in Windows, reported yesterday (see Windows has a critical wormable vulnerability). This night a security advisory has been released, patches will be available.
Windows has a critical wormable vulnerability
[German]It's a bit cryptic, what Google security experts Natalie Silvanovich and Tavis Ormandy from project Zero just revealed. They claim, they has discovered the 'worst Windows remote code exec in recent memory'. Update: Microsoft issued a fix for this vulnerability … Continue reading
New details to Intel’s AMT vulnerability
On Mai 1, 2017 Intel disclosed the AMT vulnerability (INTEL-SA-00075), without publishing details. Security Researcher from Tenable has analyzed this vulnerability.
Posted in computer, Security
Tagged AMT, Intel, ISM, Management Engine (ME), Security, Vulnerability
Leave a comment
Internet banking heist via SS7 UMTS vulneribility in Germany
[German]Cyber criminals has been successful in an Internet (online) banking heist, misusing a vulnerability known since 2014 within the signaling system #7 mobile.
Remote security exploit in Intel Platforms
[German]Intel platforms from Nehalem to Kaby Lake has a critical vulnerability. Attackers can remotely access an exploitable elevation of privilege security hole. While no consumer systems are affected, Intel and it's OEMs ships a firmware update.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Security risk OEM bloatware Portrait Display (PdiService.exe)
[German]A from OEM's (HP, PHILIPS, FUJITSU) on Windows notebooks preinstalled application bears a huge security risk. A vulnerability allows a local authenticated (non-privileged) attacker to run arbitrary code with SYSTEM privileges. Millions of devices are affected by this bloatware.
Posted in Security, Windows
Tagged Notebooks, OEM, PdiService.exe, Portrait Display, SDK, Security, Windows
Leave a comment
Nvidia driver enables malware injection
It's a nasty thing: Nvidia ships a Node.js server with its driver update function. But this Node.js server may be used to inject and execute malware on Windows systems.
TLS-INTERCEPTION: Sophos-Firewall blocks CAs in Google
Users of Google Chrome browser are facing trouble visiting HTTPS websites, if a Sophos firewall is used. The browser shows certificate warnings and saying, the the communication isn't private.
Oracle patches Java and other products
Oracle has released a bunch of 299 critical fixes for Java and other Oracle products on it's April 2017 patch day. Updates for Oracle Java SE, version(s) 6u141, 7u131, 8u121 has been issued for instance. A list of all patches … Continue reading
Issues with Update KB890830 (Windows Malicious Removal Tool)
Microsoft has released on patch day (April 11, 2017) also a new version of Windows Malicious Removal Tool (MRT) as update KB890830. It seems that this update is causing serious issues.
Posted in Security, Update, Windows
Tagged issue, KB890830, Update, Windows Removal Tool
11 Comments