Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Lancom (R&S) Firewalls (UF-xxx) no longer get signature updates from Oct. 1st till 4th 2023
[German]German blog reader Uwe Kernchen has just pointed out to me an issues that users and administrators of Lancom firewalls (also offered by Rhode & Schwarz) have hade. Since October 1, 2023, the UF-xxx firewalls no longer receive signature updates. … Continue reading
Warning about vulnerabilities in Exim Mail Transfer Agent (MTA)
[German]Another small addendum from the end of last week. There are several critical vulnerabilities in the Mail Transfer Agent (MTA) and open source mail server. CERT-Bund warns about these vulnerabilities, because attackers could execute arbitrary code via the SMTP service. … Continue reading
Tor.exe: Microsoft Defender triggers an "Trojan:Win32/Malgent!MTB" alert
[German]A few hours ago, the Tor browser received a security update that closed a vulnerability. Now Microsoft Defender in the form of Windows Security triggers an alert when the Tor browser is called up and quarantines the tor.exe file. It … Continue reading
Cisco released security advisories for multiple products
Just saw that as of Sept. 28, 2023, the U.S. National Security Agency (CISA) indicates that Cisco has issued security advisories for several products. Vulnerabilities in Cisco Catalyst SD-WAN Manager are rated "critical," while others are rated "high." Some of … Continue reading
MoveIT vendor Progress Software reports serious vulnerabilities in WS_FTP Server
[German]Progress Software, which has been hit hard by the MoveIT vulnerability, is facing the next trouble. There are further serious vulnerabilities in its WS_FTP Server software that could already being exploited in the wild. The products must be immediately provided … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
One of Michigan's largest healthcare providers fell victim to ALPHV ransomware gang
[German]The ALPHV ransomware gang has just announced that they hacked one of the largest US healthcare providers in Michigan. More than 6 terabytes of data were stolen from the company's servers. The group is expecting a ransom payment or threatening … Continue reading
LibreOffice 7.6.2 and LibreOffice 7.5.7 fixes CVE 2023-4863
The developers of LibreOffice have released updates to versions 7.6.2 and 7.5.7. These security updates were required to close the CVE 2023-4863 vulnerability in libwebp (see also my post WebP vulnerability (CVE-2023-5129) affects multiple software packages such as web browser). … Continue reading
Firefox 118.0.1, 118.1.0, and 115.3.1
As of September 28, 2023, Mozilla developers have released security updates of Firefox 118.0.1, 118.1.0 and 115.3.1. The updates closed a critical vulnerability (CVE-2023-5217: Heap buffer overflow in libvpx). An overview of the security fixes can be found here (thanks … Continue reading
TrendMicro released critical patch for Apex One SP1 Build 12512
Trend Micro has released a new "Critical Patch" for its ApexOne product (thanks to the reader for pointing it out). The patch applies to Apex One Service Pack 1 (server and agent build 12512). The critical patch fixes several bugs … Continue reading
Google Chrome 117.0.5938.132
[German]Google has released updates to the Google Chrome browser 117 in the stable channel for Mac, Linux and Windows on September 27, 2023. It is a security update that should be rolled out and fix several vulnerabilities (some classified as … Continue reading