Critical vulnerability in ConnectWise remote software Screenconnect (Feb. 2024)

Posted on 2024-02-22 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Does anyone use Screenconnect from the provider ConnectWise? A critical vulnerability (CVSS 3.1 10.0) has been discovered in the remote desktop software, which should be closed immediately. An initial exploit for this vulnerability is already available. Here is a quick overview for administrators who are responsible for or manage the use of this software. I would say: The roof is on fire. Addendum: 2,866 vulnerable instances in the USA.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Ivanti Endpoint Manager vulnerability CVE-2021-44529: Code injection or backdoor?

Posted on 2024-02-22 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]New scandal surrounding Ivanti Endpoint Manager. In 2021, Ivanti closed a security vulnerability CVE-2021-44529 in the product known as "code injection". There were rumors that it was a backdoor in an open source project. A security researcher then took another closer look at the code and made some astonishing discoveries.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Progress Kemp LoadMaster (Load-Balancer) vulnerabilityCVE-2024-1212

Posted on 2024-02-22 by guenni

Sicherheit (Pexels, allgemeine Nutzung)On February 8, 2024, administrators using the Progress Kemp LoadMaster load balancer were advised to update its firmware. The information on the vulnerability CVE-2024-1212 in the Progress Kemp LoadMaster firmware was not released until February 21, 2024. I have updated this in the article Progress Kemp LoadMaster (load balancer) Firmware update.

Posted in Security, Software | Tagged , | Comments Off on Progress Kemp LoadMaster (Load-Balancer) vulnerabilityCVE-2024-1212

Using Ubiquiti Router with standard passwords? Reset your device after a spy network was unfold

Posted on 2024-02-22 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]International law enforcement agencies (FBI, BKA etc.) have broken up a suspected Russian espionage network that was infecting routers from the manufacturer Ubiquiti. The spy network has been shut down last week. However, users of Ubiquiti routers should now reset their devices, assign their own password and also update them to the latest firmware version.

Continue reading

Posted in devices, Security | Tagged , | Leave a comment

More than 28,500 Exchange servers vulnerable via CVE-2024-21410; more software affected?

Posted on 2024-02-21 by guenni

Exchange Logo[German]Since February 13, 2024, a vulnerability CVE-2024-21410 has been known, through which attackers can access NTLM hashes via Microsoft Exchange Server and then misuse them for NTLM relay or pass-the-hash attacks. I have now read that more than 28,500 Exchange servers are vulnerable via CVE-2024-21410. Administrators must therefore take action and secure their IT infrastructure. In this context, I also came across an analysis by Frank Carius, who sees the vulnerability not in the Exchange Server but in the IIS. So there is potentially much more affected.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Firefox 123.0 and 115.8 ESR released

Posted on 2024-02-21 by guenni

Mozilla[German]On February 20, 2024, the Mozilla developers released the new Firefox 123 and the maintenance update of Firefox 115.8 ESR. Firefox 123 is a new development branch. Here is a brief overview of the updates in question, including the fixes and new features.

Continue reading

Posted in browser, Update | Tagged | Leave a comment

Google Chrome 122.0.6261.57/.58

Posted on 2024-02-21 by guenni

Chrome[German]Google has released updates to the Google Chrome browser (branch 122) in the stable channel on February 20, 2024. The Extended Stable Channel has also received an update. The Android and iOS app of the Chrome browser have also been updated. Some of the updates contain security fixes. Here is an overview of these updates. Thanks to the reader for pointing this out. Continue reading

Posted in browser, Security, Software, Update | Tagged | 1 Comment

Thunderbird 115.8.0

Posted on 2024-02-21 by guenni

[German]The developers of Thunderbird have released another update of the email client to version 115.8.0 on February 20, 2024. It is an update that is intended to fix some bugs and vulnerabilities. Continue reading

Posted in Security, Software | Tagged | Leave a comment

Windows update error due to missing Edge browser

Posted on 2024-02-21 by guenni

Windows[German]Once again, I'm bringing up an issue, that I've already touched on in posts about patchday issues with failed Windows update installations. Errors can occur during Windows update installation if the Microsoft Edge browser is not installed on the system. A blog reader got in touch at the beginning of February 2024 and confirmed another such case.

Continue reading

Posted in Update, Windows | Tagged , , | 1 Comment

Zyxel ZLD5.37 Patch2; install immediately to fix vulnerabilities

Posted on 2024-02-20 by guenni

Sicherheit (Pexels, allgemeine Nutzung)Zyxel has released a security patch "ZLD5.37 Patch2" for its ZyWALL ATP, ZyWALL USG FLEX and ZyWALL VPN solutions on February 20, 2024, which closes the vulnerabilities CVE-2023-6397, CVE-2023-6398, CVE-2023-6399, CVE-2023-676 in the products. Details can be found in the Zyxel security advisory What's New ZLD5.37 Patch2. Thanks to the reader for the hint and the advice to install the update immediately.

Posted in Security, Software | Tagged | Leave a comment