Recently I became aware of the "Security Technical Implementation Guide". The Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of … Continue reading
[German]Microsoft has been successfully hacked by the Russian state hacker group Midnight Blizzard, also known as Nobelium. This was noticed on January 12, 2024, but the hackers were probably in the systems for months and were able to view and … Continue reading
[German]Microsoft has released another security update for the Edge (Chromium) browser with version 120.0.2210.144 in the stable channel on January 17, 2024. It is a security update that is intended to close vulnerabilities.
[German]Google has released updates to the Google Chrome browser in the stable channel for Mac, Linux and Windows on January 16, 2023. This affects both the standard and the extended stable channel The Android app of the Chrome browser has … Continue reading
[German]Administrators of a Citrix NetScaler ADC or a Citrix NetScaler Gateway should take action. Manufacturer Citrix has published a security advisory regarding the two vulnerabilities CVE-2023-6548 and CVE-2023-6549 in the above-mentioned products on January 16, 2024. One vulnerability allows DDoS … Continue reading
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]The security update rolled out on January 9, 2024 via automatic update (e.g. KB5034441) against a BitLocker Security Feature Bypass vulnerability CVE-2024-20666 in the WinRE partition fails on many systems with the installation error 0x80070643. Somehow this is a disaster … Continue reading
If you plan to use the Authy authentication application and would like to use it for two-factor authentication (2FA) for desktop systems, you should reconsider. The developer Twilio has announced that Authy authentication for the desktop will be discontinued in … Continue reading
[German]Security provider Bitdefender has informed me that security researchers in its labs have found vulnerabilities in Bosch BCC100 thermostats. Hackers can use these vulnerabilities to take control of such smart thermostats and gain access to smart home networks. The experts … Continue reading
[English]Another addendum from the January 2024 patchday for Microsoft SharePoint Server. I mentioned the SharePoint Server RCE vulnerability CVE-2024-21318 in the patchday articles. This was closed with the security updates of January 9, 2023. There is a second Elevation of … Continue reading
[English]These are currently difficult times for customers and resellers of VMware products who want to reorder, extend licenses or simply activate product licenses. After the Broadcom takeover, absolute chaos reigns. Dealers have been terminated, orders via OEMs are sometimes impossible, … Continue reading
MVP:
2013 – 2016
WIMVP:
2017 – 2020
