Vulnerabilities CVE-2022-27507 and CVE-2022-27508 in Citrix ADC and Citrix Gateway

Posted on 2022-05-27 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Two vulnerabilities CVE-2022-27507 and CVE-2022-27508 exist in Citrix ADC and Citrix Gateway, for which the vendor has issued a security bulletin. The vulnerabilities discovered in Citrix ADC and Citrix Gateway allow attackers to launch a distributed denial-of-service (DDoS) attack. The vendor has released updates to address these vulnerabilities. U.S. CISA is urging immediate patching of the vulnerabilities, which are rated medium and high.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Windows 11 preview update KB5014019 breaks Trend Micro Ransomware Protection

Posted on 2022-05-27 by guenni

Windows[German]Preview update KB5014019, which Microsoft released for Windows 11 on May 24, 2022, is causing trouble for Trend Micro antivirus solutions. It clashes with Trend Micro's Ransomware Protection, the vendor acknowledged in an advisory.

Continue reading

Posted in issue, Update, Windows | Tagged , , | Leave a comment

Microsoft provides guidance on protecting against KrbRelayUp attacks in Windows domains

Posted on 2022-05-26 by guenni

Windows[German]KrbRelayUp attacks allow local privilege escalation in Windows domain environments where LDAP signing is not enforced. The default Active Directory settings are still insecure. However, Microsoft has now explained in a post how administrators can protect systems against KrbRelayUp attacks in Windows domains.

Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

Interpol arrests Nigerian head of BEC fraud gang

Posted on 2022-05-26 by guenni

Paragraph[German]Interpol, together with the Nigerian police, was able to arrest the head of a BEC (Business Email Compromise) gang. The gang had been targeted by investigators for numerous email scams, and security researchers from Palo Alto Networks and other firms helped Interpol to uncover the group.

Continue reading

Posted in Security | Tagged | Leave a comment

Google Chrome get Google-Lense and image search

Posted on 2022-05-26 by guenni

Google has been working for some time (see this tweet) to better integrate a Google Lens visual search tool into its browser. Now, Google is introducing the ability to evaluate via images using Google Lens via context menu in the desktop Chrome browser. Users can directly translate text within an image, identify an object in an image, or determine the original source of an image via Google Image Search in the browser. I became aware of this via this article on Techcrunch, which describes the details. 

Posted in Software | Tagged | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Windows issue: Defender collides with FMAPOService

Posted on 2022-05-26 by guenni

Windows[German]In April 2022, I had reported issues with Windows Defender on Windows 10 (20H2). From extreme RAM usage to startup problems with Word or effects like black screen after user login has been observed/reported. Some issues were supposedly fixed by a Defender signature update, but users continue to have issues. Now an administrator from France contacted me by mail. Based on my blog posts, he was able to trace the problem back to a collision between Defender and FMAPOService.

Continue reading

Posted in Security, Windows | Tagged , , | 8 Comments

Nation wide disruption with Verifon H5000 payment terminals in Germany

Posted on 2022-05-25 by guenni

Stop - Pixabay[German]Since May 24, 2022, the terminals for card payments with giro and EC cards have been disrupted in numerous stores and gas stations nationwide in Germany. Customers of almost all banks were affected – although I also encountered institutions such as Sparkasse and Commerzbank in addition to Visa. In the meantime, it has emerged that a software error in the H5000 card terminals from Verifone was the cause, and communication with the payment service provider was blocked.

Continue reading

Posted in devices, issue | Tagged , | 2 Comments

Nomination for the European Cybersecurity Blogger Award 2022 – we are now underdogs

Posted on 2022-05-25 by guenni

[German]London-based Eskenzi PR intend also in 2022 to grant the European Cybersecurity Blogger Award. There are usually various categories and in past years people like Troy Hunt have been nominated and awarded. I just found out that the German edition (it's only one edition that may be nominated) of my IT blog here has been nominated in the category "The Underdogs – Best Personal (non-commercial) Security Blog" and also in the category "The Tech Whizz – Best Technical Blog".

Continue reading

Posted in General | Tagged | Leave a comment

Zyxel warns of vulnerabilities in firewalls, AP controllers and access points (May 24, 2022)

Posted on 2022-05-25 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Vendor Zyxel has published a security advisory warning of several vulnerabilities in firewalls, access points and access point controllers. Attackers can execute their own code via the vulnerabilities, block 2FA login and disrupt the devices. However, updates are available for the affected components to close the vulnerabilities.

Continue reading

Posted in Security | Tagged | Leave a comment

Chrome 102.0.5005.61/62/63 fixes critical vulnerabilities

Posted on 2022-05-25 by guenni

[German]Google has released updates to the 102.0.5005.61/62/63 Google Chrome browser for Windows and Mac on the desktop in the Stable Channel as of May 24, 2022 (Chrome 102 is also included in the Stable Channel for Windows and Mac). Furthermore, on Android, the update to version 102.0.5005.58/59 has been released

Continue reading

Posted in browser, Security, Software, Update | Tagged , , | Leave a comment