Dutch military network hacked via FortiGate; Volt Typhoon botnet in US systems for 5 years

Posted on 2024-02-09 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]An espionage operation by the Chinese government in a computer network of the Dutch military has probably been uncovered. The military network was hacked via a vulnerability in FortiGate. This is also relevant for other Fortinet customers. And it has since been revealed that the Volt Typhoon botnet, which was allegedly operated by Chinese state-affiliated hackers and recently shut down by the FBI, had probably been in existence for five years. The US security agency CISA published further details on Feb. 7, 2024.

Continue reading

Posted in Security | Tagged | Leave a comment

iOS 17.3.1 released

Posted on 2024-02-09 by guenni

Apple has just released iOS and iPadOS 17.3.1. According to deskmodder.de there is only one fix: "Text may unexpectedly appear twice or overlap when typing". Seems to have occurred in the Notes app, for example.

Posted in ios | Tagged | Leave a comment

Windows 10: App throws "File system error" (-2147219196) – CPU not compatible

Posted on 2024-02-09 by guenni

Windows[German]A small addendum for Windows 10 users who may have been receiving the error "File system error" (-2147219196) in apps such as Photos since January 2023. This should only occur on older hardware if the processor no longer supports a certain instruction set. Microsoft has found the cause and has been providing a fix via the App Store since the beginning of February 2024. This is also a preview of what Windows 11 users with non-compatible hardware can expect in the future.

Continue reading

Posted in issue, Windows | Tagged , | Leave a comment

Edge 121.0.2277.112 and 120.0.2210.175

Posted on 2024-02-09 by guenni

Edge[German]Microsoft has released a security update of the Edge (Chromium) browser with version 121.0.2277.112 in the Stable Channel on February 8, 2024. The Extended Stable was updated to version 120.0.2210.175. These are bug fix and security updates, which are intended to close vulnerabilities. Thanks to the readers for their comments.

Continue reading

Posted in browser, Security, Software, Update | Tagged | Leave a comment

AnyDesk hack confirmed as of December 2023; old certificate recalled – Part 10

Posted on 2024-02-09 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]AnyDesk confirmed a few hours ago that the cyber incident took place "at the end of December 2023". In addition, the old certificate of "philandro Software GmbH" is now likely to be criticized. The background to this is that a third party had applied to DigiCert for a "revoke" and this application was granted. Here is an updated overview of what has happened in the last 24 hours.

Continue reading

Posted in Security | Tagged | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Important ESET product updates available (Feb. 8, 2024)

Posted on 2024-02-09 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Short information for administrators who use ESET Endpoint Antivirus/Security under Windows. The manufacturer has released an important product update for its Windows product line, which should be installed immediately. The update fixes a vulnerability that will not be disclosed in an advisory until February 14, 2024.

Continue reading

Posted in Security, Software, Windows | Tagged , , | Leave a comment

Critical FortiOS-Bug (Feb. 8., 2024)

Posted on 2024-02-08 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]A very brief note, which was also pointed out to me by a blog reader. Forti has re-released all FortiOS versions on February 8, 2024. The release notes do not say what has been fixed in these versions. The reader confirmed my suspicion off the record that there is another critical SSLVPN bug.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Progress Kemp LoadMaster (load balancer) Firmware update

Posted on 2024-02-08 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Quick note for administrators who use the load balancer LoadMaster from Progress Kemp. The provider has provided various firmware updates for its LoadMaster as of February 7, 2024. These should be installed immediately. Addendum: Information about CVE-2024-1212 in Progress Kemp LoadMaster added.

Continue reading

Posted in Security, Software, Update | Tagged , , | Leave a comment

JetBrains TeamCity: Critical vulnerability CVE-2024-23917 (on-premises)

Posted on 2024-02-08 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]A small addendum from yesterday regarding security. There is a critical vulnerability in JetBrains TeamCity Server that endangers on-premises servers. There is probably a security update available, which should be installed as soon as possible. I don't know who among the readership uses the package, I didn't know the name. I will summarize the necessary information in this article.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

AnyDesk hack already noticed on December 20, 2023? – Part 9

Posted on 2024-02-08 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]The successful cyberattack on AnyDesk, a provider of remote maintenance software, is making quite a stir. Officially, the incident was confirmed by AnyDesk on February 2, 2024 (specifically Friday evening at 10:44 pm). Almost nothing is known – neither when, nor what exactly was hacked. I've been working on this topic since January 2024 and an overall picture is emerging from many bits and pieces of information. I now have various sources that indicate that the hack was noticed as early as December 20, 2023. Addendum: AnyDesk has confirmed my suspicions, see my text below.

Continue reading

Posted in Security | Tagged | 3 Comments