Bitdefender has released a Decryptor for LockerGoga encrypted files

Posted on 2022-09-17 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Small note for people who have fallen victim to LockerGoga ransomware. Bitdefender has informed me that the company has released a universal decryptor. This allows victims of all previous LockerGoga ransomware attacks to recover their encrypted files.  Europol, the NoMoreRansom Initiative, the Zurich Public Prosecutor's Office and the Zurich Cantonal Police participated in the development of the decryptor, which is freely available for download.

Continue reading

Posted in Security, Software | Tagged | Leave a comment

Google faces up to 25 billion euros in "claims" after lawsuits in UK and EU

Posted on 2022-09-17 by guenni

Paragraph[German] Google and its parent Alphabet are facing further legal trouble, as lawsuits have been filed in the EU and the UK. It's about "damages" for publishers who feel they have been harmed by Google's actions in the area of advertising technology. In the worst case scenario, the publishers' claims could add up to 25 billion euros if these lawsuits are successful.

Continue reading

Posted in General | Tagged | Leave a comment

Microsoft Edge 105.0.1343.42

Posted on 2022-09-17 by guenni

EdgeMicrosoft has updated the Edge browser in the stable channel to version 105.0.1343.42 on September 15, 2022. The release notes don't reveal much – Chrome security fixes have been integrated into the new version.

Posted in browser, Software, Update | Tagged , | Leave a comment

Update for Exchange Extended Protection script, but still errors

Posted on 2022-09-16 by guenni

Exchange Logo[German]August 2022 security updates for Microsoft Exchange (on-premises solution) requires, to enable Extended Protection (EP) to close all vulnerabilities. The activation is done via script, which Microsoft provided – but this script caused isses. Now Microsoft has released an updated script. However, there are also errors in this script, a fix should be made with the "next update".

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Ride share service provider Uber investigates hack (Sept. 2022)

Posted on 2022-09-16 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German] U.S. ride share service provider Uber appears to have been the victim of a hack, with an 18-year-old penetrating the provider's system. Uber employees initially thought the whole thing was a joke. The hacker claims to have entered the Uber system "for fun", but then probably found a PowerShell script on a share, which contained administrator credentials. And now the hacker is probably an administrator of the Uber IT systems.

Continue reading

Posted in Security | Tagged | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

European (EU) Cyber Resilience Act: Proposal for improved security for digital devices

Posted on 2022-09-16 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Hardware and software products are increasingly subject to successful cyberattacks, resulting in an estimated annual cost of €5.5 trillion from cybercrime by 2021. The European Union therefore presented a draft Cyber Resilience Act on September 15, 2022. The proposal for a regulation on cybersecurity requirements for products with digital elements, known as the Cyber Resilience Act, aims to define cybersecurity rules to ensure more secure hardware and software products.

Continue reading

Posted in Security | Tagged | Leave a comment

"I don't care about cookies" sold to AVAST

Posted on 2022-09-16 by guenni

Stop - Pixabay[German]Small note to the blog readership. The developer of the browser add-in "I don't care about cookies" has just announced that he has sold his product to AVAST. I don't begrudge Daniel Kladnik this sale, but I have some thoughts of my own in the back of my mind about whether the extension is really in good hands with AVAST. Here is some information about this topic.

Continue reading

Posted in General, Software | Tagged | Leave a comment

Attention: Backdoor in TechLogix Networx Power Delivery Unit; Isolate devices from Internet and Patch it

Posted on 2022-09-16 by guenni

Stop - Pixabay[German]There is a serious vulnerability (backdoor) in the firmware of power delivery units from the US manufacturer Networx. In older versions (prior to version 2.0.2a ), the firmware does not perform authentication, i.e. it is possible to switch off the power delivery unit (PDU) via the network. This is deadly if these units are used for power supply in data centers and are accessible via internet. After a reader's tip, I contacted the manufacturer and GErman CERT Alliance about this. After much back and forth, there is now a working update. Below I disclose the details. Operators should urgently isolate the PDUs and install the firmware update promptly.

Continue reading

Posted in devices, Security, Software, Update | Tagged , , , | Leave a comment

Windows 10 Update KB5017308 causes issues when creating/copying files via GPO

Posted on 2022-09-15 by guenni

Windows[German]Sort September 2022 patchday recap. It looks like the cumulative (security) update KB5017308 released on September 13, 2022 for Windows 10 comes with collateral damage. I have received several reports from readers that following the update installation, creating or copying files via GPO or creating GPO settings files no longer works.

Continue reading

Posted in issue, Security, Update, Windows | Tagged , , , , | 18 Comments

Lenovo BIOS/UEFI updates fix vulnerabilities, hundreds of models affected (9.2022)

Posted on 2022-09-15 by guenni

[German]Chinese computer manufacturer Lenovo has released updates for the BIOS/UEFI of hundreds of its computer models. These are intended to address serious vulnerabilities (CVE-2021-28216, CVE-2022-40134, CVE-2022-40135, CVE-2022-40136, CVE-2022-40137), which Lenovo describes in a security advisory. 

Continue reading

Posted in devices, Security, Update | Tagged , , , | Leave a comment