Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Linux: Backdoor in upstream xz/liblzma; compromise of SSH servers
[German]As of Friday, March 29, 2024, Red Hat has published a warning. The latest versions of the "xz" tools and libraries contain malicious code, a backdoor, which is apparently intended to allow unauthorized access. Affected by the backdoor (vulnerability CVE-2024-3094) … Continue reading
Microsoft Edge Bug CVE-2024-21388 allowed to install arbitrary extensions
[German]A now-patched vulnerability in the Microsoft Edge web browser could have been abused to install arbitrary extensions on users' systems and carry out malicious actions. This was revealed by a security researcher to The Hacker News.
Microsoft .NET 7 will no longer be supported on May 14, 2024
Brief information for people who use Microsoft .NET 7. This runtime environment will cease to be supported on May 14, 2024 and will no longer receive security updates.
Apple users target of "MFA bombing" attacks (2024)
[German]Users of Apple devices (iPhone, Apple Watch, Macs) are probably being targeted by a wave of attacks known as "MFA bombing". The aim of the attackers is to take over the victims' Apple accounts through a wave of password reset … Continue reading
Google Chrome 123.0.6312.86/.87
[German]Google has released an update of the Google Chrome browser (branch 123) in the stable channel on March 26, 2024, which closes seven vulnerabilities (some of them critical). The Extended Stable Channel and the app for Android have also received … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Stop: Disable the scanning of documents by Adobe AI solutions!
[German]Adobe has begun to introduce its own AI solutions in its products. There is a risk that Adobe products will begin to scan all documents in companies in order to obtain data for feeding the AI solutions. Administrators should therefore … Continue reading
Windows Server: Fix for (Kerberos) LSASS memory leak through March 2024 updates
[German]On March 22, 2024, Microsoft released a special update with a fix for Windows Server that eliminates an LSASS memory leak caused by the March 2024 updates. I had reported here in the blog that on some systems Kerberos requests … Continue reading
Posted in issue, Security, Update, Windows
Tagged fix, issue, Patchday 3.2024, Update, Windows Server
5 Comments
Unsaflok: Millions of hotel doors can be opened with fake key cards
[German]Electronic locks from Saflock are used in many hotels and even in apartments. The doors secured in this way can be unlocked using RFID cards. Great thing? Unfortunately, security vulnerabilities mean that these electronic RFID locks can be picked using … Continue reading
Google Chrome 123.0.6312.58/.59 and 122.0.6261.139
[German]Google has released an update to the Google Chrome browser (branch 1232) in the Stable Channel on March 19, 2024. The Extended Stable Channel and the app for Android have also received an update. The updates fix bugs and close … Continue reading
Microsoft PKI vulnerability – a warning without details …
A little info that recently came to my attention. Microsoft seems to have informed some people that they have found a configuration problem in the Microsoft Cloud Public Key Infrastructure (PKI). This would affect the configuration in the organization of … Continue reading