Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Edge 115.0.1901.200 and 114.0.1823.106 fixes vulnerabilities
[German]Microsoft has updated the Edge browser to versions 115.0.1901.200 and 114.0.1823.106 as of August 7, 2023, July 17. In addition to fixing bugs and performance issues, Chrome vulnerabilities and Edge vulnerability CVE-2023-38157 have been fixed in both versions (thanks to … Continue reading
Microsoft has fixed Azure vulnerability faster (in August 2023) after Tenable criticism
[German]Microsoft surprisingly fixed a vulnerability in the Azure environment as reported of Aufugst 4, 2023, with a patch originally scheduled for end of September 2023. Microsoft has been aware of the vulnerability since March 2023. The harsh criticism of the … Continue reading
Critical RCE vulnerability CVE-2023-39143 in PaperCut before version 22.1.3
[German]Anyone using the Papercut MF/NG print management solution under Windows should urgently patch the product. A critical RCE vulnerability CVE-2023-39143 that has just been disclosed allows PaperCut servers to be taken over. The vendor has already released a corresponding security … Continue reading
Allegedly malicious notifications from teams through Defender ZAP
[German]I would like to ask the administrators among the readership if anyone else is experiencing the effect mentioned here. An administrator contacted me because he has been getting reports of supposedly corrupt notifications from Teams for days. In use is … Continue reading
Bypass malware detection in Google Play Store with Dynamic Code Loading
[German]If anyone is wondering why malware is repeatedly found in Android apps that are quite officially available in the Google Play Store, there is an explanation. Google's security team has now confirmed that attackers are using dynamic code loading to … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Microsoft's warning: Teams users targeted by Russian attackers (Midnight Blizzard)
[German]Microsoft has just issued a warning to Teams users because they have encountered phishing campaigns targeting this clientele. Behind these phishing campaigns are Russian attackers that Microsoft names Midnight Blizzard (or NOBELIUM. APT29, UNC2452 and Cozy Bear). The group's goal … Continue reading
Thunderbird 102.14 and 115.1 released
[German]The developers of Thunderbird have released another update of the email client to version 115.1.0 and to 102.14 on August 1-2, 2023. These are updates which fix bugs and vulnerabilities.
Microsoft as a Security Risk? Azure vulnerability unpatched since March 2023, heavy criticism from Tenable – Part 2
[German]Security vendor Tenable has made serious accusations against Microsoft. A critical vulnerability in Azure Active Directory (AAD, recently EntraID) has been known since March 2023, but has not yet been patched. The CEO of security vendor Tenable, Amit Yoran, sharply … Continue reading
Vulnerability CVE-2023-35082 in Ivanti MobileIron Core (up to version 11.2)
[German]After already admitting to two vulnerabilities in July 2023 that were exploited in hacks, Ivanti has confirmed another vulnerability in MobileIron Core (Ivanti Endpoint Manager Mobile, EPMM). According to a new security advisory from Ivanti, there is another vulnerability CVE-2023-35082 in … Continue reading
Microsoft has published the TokenTheft playbook
[German]Small note to administrators who are responsible for or manage services and applications in the (Microsoft) cloud. The theft of tokens can enable attackers to access the corresponding services. As a result of a corresponding incident, Microsoft has therefore published … Continue reading