Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Google Chrome 122.0.6261.94/.95
[German]Google has released another update to the Google Chrome browser (branch 122) in the stable channel on 27 February 2024. The Extended Stable Channel and the app for Android have also received an update. Both updates fix bugs and close … Continue reading
Windows vulnerability CVE-2024-21412: Attacks by the APT group Water Hydra
[German]On 13 February 2024, the Internet Shortcut Files Security Feature Bypass vulnerability CVE-2024-21412 became known. This vulnerability can be used to bypass the SmartScreen in Windows and other products. Microsoft has provided corresponding patches for the supported Windows versions with … Continue reading
TeamViewer password vulnerability CVE-2024-0819
[German]A short warning to readers who use the TeamViewer remote maintenance software still with a "personal password". The client for Windows should urgently be updated to version 15.51.5. The manufacturer has published a security notice stating that older software versions … Continue reading
WordPress LiteSpeed Cache Plugin with vulnerability CVE-2023-40000
[German]Quick note for WordPress users who use the LiteSpeed Cache plugin. The plugin should be updated urgently, as a vulnerability CVE-2023-40000 can lead to an unauthoriszd takeover of the website. An update for the quite popular plugin is available.
Camera for facial recognition discovered in Invenda vending machines (Mars, Coca-Cola)
[German]An unpleasant story that went public come to light in Canada. An error message on the display of a vending machine from which you can buy sweets such as MMs or Mars bars prompted a student at a Canadian university … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
SSH snake steals SSH keys
[German]Warning about the Snake worm, which is designed to steal SSH keys. The SSH-Snake malware was discovered by the Sysdig Threat Research Team (TRT). The self-modifying worm uses SSH credentials discovered on a compromised system to spread throughout the network. … Continue reading
LockBit ransomware group back? And new findings
[German]Recently, international law enforcement agencies have announced the dismantling of the LockBit ransomware group's infrastructure. However, this appears to have been only a brief success – the LockBit ransomware group has set up new servers and appears to be back … Continue reading
Mailboxes are currently flooded by password reset, newsletter or account confirmation mails – it's an attack
[German]A German blog reader contacted me this week and reported a worrying observation made by one of his customers. The customer is receiving a flood of requests to reset his passwords, to confirm a newsletter or a now user account. … Continue reading
Attacks on OpenVPN servers (Synology and others) since Feb. 2024
[German]It seems that products, that using OpenVPN servers, are now under (Brute Force) attacks. A blog reader contacted me by email the other day because he had observed strange behavior. His logs showed access attempts from the same IP addresses … Continue reading
Vulnerabilities in HP Laser printers (Feb. 2024)
[German]Printer manufacturer Hewlett Packard has published security messages warning of vulnerabilities in various HP Laserjet printers. These vulnerabilities can be used to inject code. The manufacturer has provided firmware updates to close the vulnerabilities in its devices. Thanks to the … Continue reading