Category Archives: Software

Windows Explorer issues since Adobe Sync deactivation; fixed in Feb. 2024

[German]A little information for Windows 10/11 users who also use Adobe's Creative Cloud. It seems that some of these users have "recently" started to suffer from problems with Windows Explorer. It reacts extremely slowly when changing folders and file selection … Continue reading

Posted in issue, Software, Windows | Tagged , , , | Leave a comment

Advertising

VMware Warning: Uninstall Enhanced Authentication Plug-in (EAP)

[German]Virtualisation vendor VMware has just issued a security warning. It concerns the Enhanced Authentication Plug-in (EAP), which should be uninstalled as a matter of urgency. Critical vulnerabilities have been found in the Enhanced Authentication Plug-in (EAP). We do not know … Continue reading

Posted in Security, Software, Virtualization | Tagged , , | Leave a comment

How to find weak passwords in Active Directory and eliminate them with PowerShell

[Sponsored Post]Weak or compromised passwords are a known gateway for attackers. If you are able to identify which users in Active Directory (AD) are threatened by this, then PowerShell can help to remedy it. However, PowerShell scripts cannot eliminate basic AD deficits, other tools are needed for this. More ...

Critical vulnerability in ConnectWise remote software Screenconnect (Feb. 2024)

[German]Does anyone use Screenconnect from the provider ConnectWise? A critical vulnerability (CVSS 3.1 10.0) has been discovered in the remote desktop software, which should be closed immediately. An initial exploit for this vulnerability is already available. Here is a quick … Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Advertising

Ivanti Endpoint Manager vulnerability CVE-2021-44529: Code injection or backdoor?

[German]New scandal surrounding Ivanti Endpoint Manager. In 2021, Ivanti closed a security vulnerability CVE-2021-44529 in the product known as "code injection". There were rumors that it was a backdoor in an open source project. A security researcher then took another … Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Progress Kemp LoadMaster (Load-Balancer) vulnerabilityCVE-2024-1212

On February 8, 2024, administrators using the Progress Kemp LoadMaster load balancer were advised to update its firmware. The information on the vulnerability CVE-2024-1212 in the Progress Kemp LoadMaster firmware was not released until February 21, 2024. I have updated … Continue reading

Posted in Security, Software | Tagged , | Comments Off on Progress Kemp LoadMaster (Load-Balancer) vulnerabilityCVE-2024-1212

Advertising

More than 28,500 Exchange servers vulnerable via CVE-2024-21410; more software affected?

[German]Since February 13, 2024, a vulnerability CVE-2024-21410 has been known, through which attackers can access NTLM hashes via Microsoft Exchange Server and then misuse them for NTLM relay or pass-the-hash attacks. I have now read that more than 28,500 Exchange … Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Google Chrome 122.0.6261.57/.58

[German]Google has released updates to the Google Chrome browser (branch 122) in the stable channel on February 20, 2024. The Extended Stable Channel has also received an update. The Android and iOS app of the Chrome browser have also been … Continue reading

Posted in browser, Security, Software, Update | Tagged | Leave a comment

Thunderbird 115.8.0

[German]The developers of Thunderbird have released another update of the email client to version 115.8.0 on February 20, 2024. It is an update that is intended to fix some bugs and vulnerabilities. Advertising

Posted in Security, Software | Tagged | Leave a comment

Advertising

Zyxel ZLD5.37 Patch2; install immediately to fix vulnerabilities

Zyxel has released a security patch "ZLD5.37 Patch2" for its ZyWALL ATP, ZyWALL USG FLEX and ZyWALL VPN solutions on February 20, 2024, which closes the vulnerabilities CVE-2023-6397, CVE-2023-6398, CVE-2023-6399, CVE-2023-676 in the products. Details can be found in the … Continue reading

Posted in Security, Software | Tagged | Leave a comment

AnyDesk hack: Newly signed clients available; what are your experiences? – Part 12

[English]At the begin of February 2024, it became known that the provider of remote maintenance software, AnyDesk, was the victim of a hack of its production environment. I pointed out early on that the hack had already taken place in … Continue reading

Posted in Security, Software | Tagged , , | Leave a comment