Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Local Privilege Escalation vulnerability CVE-2024-035 in ESET products fixed
[German]On February 8, 2024, ESET updated some of its antivirus products at short notice. The information about a vulnerability was "on hold" until February 14, 2024. ESET has now published a security advisory confirming a Local Privilege Escalation vulnerability in … Continue reading
Security incident: 13,000 Wyze camera users see images of other users
[German]Security camera vendor, Wyze, recently experienced technical problems. Users reported that they were suddenly shown other people's camera images. The provider has now confirmed the security incident. Around 13,000 users were affected and were shown the camera data of other … Continue reading
Operation Cronos: FBI & Co. seized infrastructure of the Lockbit ransomware gang
[German]It has been known for a few hours that law enforcement officers have seized some of the Lockbit ransomware gang's infrastructure servers in an internationally coordinated operation (FBI, Europool, etc.) and taken control of them. Official information on "Operation Cronos" … Continue reading
New Teams 2.0 client doesn't ask for password for re-login
[German]A reader has pointed out to me that there is a behavior that should make it possible to bypass authentication with the user account on the client. Specifically, a third party can log in to the account again without entering … Continue reading
Follow-up on CU 14 for Exchange 2019 and vulnerability CVE-2024-21410 (Feb. 2024)
[German]On February 13, 2024, a critical vulnerability CVE-2024-21410 in Microsoft Exchange Server became public. The Elevation of Privilege vulnerability has a CVEv3 score of 9.8 and is likely to be exploited (soon). Security authorities are warning about this vulnerability. However, … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Microsoft Office Updates (February 13, 2024)
[German]On February 13, 2024 (second Tuesday of the month, Microsoft Patchday), Microsoft released several security-related updates for Microsoft Office 2016 and other products. A critical vulnerability in Outlook will be closed in February 2024. Below you will find an overview … Continue reading
Warning about critical Outlook RCE vulnerability CVE-2024-21413
[German]I'll pull it out again separately: In Microsoft Outlook, a CVE-2024-21413 classified as critical has been disclosed, which will be closed with the February 2024 security updates. The remote code execution vulnerability is almost trivial to exploit. Here is some … Continue reading
Posted in Office, Security, Update
Tagged Outlook, Patchday 2.2024, Security, Update
Leave a comment
Google Chrome 122.0.6261.39/49; 121.0.6167.184 / .185
[German]Google released updates to the Google Chrome browser (branch 121) in the stable channel on February 13 and 14, 2024. There were also updates for the 122 and 120 development branches. The Android and iOS app of the Chrome browser … Continue reading
AnyDesk hack: Revoke chaos with old certificates? – Part 11
[German]Now that it is clear that the provider of remote maintenance software, AnyDesk, was the victim of a hack of its production environment in December 2023, a certificate change for the digital signing of AnyDesk clients is pending. According to … Continue reading
Windows Server 2012 / R2 und Windows 7/Server 2008 R2 (February 13, 2024)
[German]Various security updates for Windows Server 2012/R2 (1st ESU year) were published on February 13, 2024. Support for Windows 7 SP1 and Windows Server 2008 R2 expired in January 2024. However, updates for Windows Embedded Standard 7 can be downloaded … Continue reading
Posted in Security, Update, Windows
Tagged Patchday 2.2024, Security, Update, Windows 7, Windows Server 2012 (R2)
Leave a comment