[German]Software security in cars – a hot topic. On platforms such as TikTok, a trend known as the Kia Challenge or Kia Boys is celebrating a happy new era – the aim is to steal vehicles from Kia or Hyundai using a USB stick. And I came across the next sloppiness: A blogger searching the web found the private keys for software updates on Hyundai vehicles.
[German]Is there a new data leak in China that has captured personal data of millions of people? A hacker has claimed to have obtained the personal data of 48.5 million users of a COVID mobile health code app operated by the city of Shanghai. Joins a chain of other data breaches.
A small note for users of the messenger Threema. The developers are very privacy-conscious and do not use any software libraries from Google or third-party providers in their app. In the meantime, the app is also available for FDroid. So goodbye tracking through frameworks.
IEEESpectrum is planning a short series of reports examining Tesla's collection and use of data from its customers' vehicles. Part 1 will summarize what is known about what data Tesla collects and uploads to its servers.
IT management platforms can become dangerous vulnerabilities. When vulnerabilities allow root access and enable remote code execution, such asset management platforms become a danger. In a warning, Bitdefender reveals the risks that existed with the Device42 product and why an update of the IT asset management platform is necessary.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Microsoft has published information about security update revisions for CVE-2022-34716 as of August 11, 2022. Here is the relevant information in case you did not receive it.
As of August 9, 2022, Microsoft has released a few more updates for the .NET Framework. Bolko pointed it out here (thanks for that). Update KB5016738 iis the Security and Quality Rollup for .NET Framework 3.5.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 7 SP1 and Windows Server 2008 R2 SP1 and includes KB5016367 (.NET 4.8) and KB5016368 (.NET 4.7). There is also the Microsoft .NET Desktop Runtime 6.0.8.
Microsoft has updated the Edge browser in the stable and extended release channel to version 104.0.1293.54 as of August 11, 2022. The release notes do not provide any further details about the update. Thanks to Robert for the tip.
[German]The lack of a comprehensive federal law to protect U.S. citizens from online tracking by online platforms is a growing problem in the United States. Companies are trying to collect and store vast amounts of search data and other information from consumers. This is now prompting the U.S. Federal Trade Commission (FTC) to plan an expansion of online data protection.
[German]Users of Microsoft Office products beware. Microsoft has commented on a crash bug in Outlook (I reported recently) and published a workaround. In addition, Microsoft 365 had to be rolled back from version 2206 to version 2205 due to app crashes in the Monthly Channel – I reported this bug just a few hours ago.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
