Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Software
TeamViewer password vulnerability CVE-2024-0819
[German]A short warning to readers who use the TeamViewer remote maintenance software still with a "personal password". The client for Windows should urgently be updated to version 15.51.5. The manufacturer has published a security notice stating that older software versions … Continue reading
WordPress LiteSpeed Cache Plugin with vulnerability CVE-2023-40000
[German]Quick note for WordPress users who use the LiteSpeed Cache plugin. The plugin should be updated urgently, as a vulnerability CVE-2023-40000 can lead to an unauthoriszd takeover of the website. An update for the quite popular plugin is available.
New Teams 2.0 client will be mandatory later – but some "chaos"
[German]Will the forced switch to the new Microsoft Teams 2.0 client in companies not be mandatory on 1 April 2024 after all? While this date is still valid, Redmond is now giving corporate customers a three-month grace period. The background … Continue reading
SSH snake steals SSH keys
[German]Warning about the Snake worm, which is designed to steal SSH keys. The SSH-Snake malware was discovered by the Sysdig Threat Research Team (TRT). The self-modifying worm uses SSH credentials discovered on a compromised system to spread throughout the network. … Continue reading
Windows Explorer issues since Adobe Sync deactivation; fixed in Feb. 2024
[German]A little information for Windows 10/11 users who also use Adobe's Creative Cloud. It seems that some of these users have "recently" started to suffer from problems with Windows Explorer. It reacts extremely slowly when changing folders and file selection … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
VMware Warning: Uninstall Enhanced Authentication Plug-in (EAP)
[German]Virtualisation vendor VMware has just issued a security warning. It concerns the Enhanced Authentication Plug-in (EAP), which should be uninstalled as a matter of urgency. Critical vulnerabilities have been found in the Enhanced Authentication Plug-in (EAP). We do not know … Continue reading
Posted in Security, Software, Virtualization
Tagged Security, Virtualization, VMware
Leave a comment
Critical vulnerability in ConnectWise remote software Screenconnect (Feb. 2024)
[German]Does anyone use Screenconnect from the provider ConnectWise? A critical vulnerability (CVSS 3.1 10.0) has been discovered in the remote desktop software, which should be closed immediately. An initial exploit for this vulnerability is already available. Here is a quick … Continue reading
Ivanti Endpoint Manager vulnerability CVE-2021-44529: Code injection or backdoor?
[German]New scandal surrounding Ivanti Endpoint Manager. In 2021, Ivanti closed a security vulnerability CVE-2021-44529 in the product known as "code injection". There were rumors that it was a backdoor in an open source project. A security researcher then took another … Continue reading
Progress Kemp LoadMaster (Load-Balancer) vulnerabilityCVE-2024-1212
On February 8, 2024, administrators using the Progress Kemp LoadMaster load balancer were advised to update its firmware. The information on the vulnerability CVE-2024-1212 in the Progress Kemp LoadMaster firmware was not released until February 21, 2024. I have updated … Continue reading
More than 28,500 Exchange servers vulnerable via CVE-2024-21410; more software affected?
[German]Since February 13, 2024, a vulnerability CVE-2024-21410 has been known, through which attackers can access NTLM hashes via Microsoft Exchange Server and then misuse them for NTLM relay or pass-the-hash attacks. I have now read that more than 28,500 Exchange … Continue reading