[German]There is an agreement from Broadcom with the management of the cloud and virtualization specialist VMware, to acquire VMware (if the competition authorities approve). Broadcom confirmed this in an announcement dated May 25, 2022. The purchase price is expected to be around 61 billion US Dollar.
[German]Two vulnerabilities CVE-2022-27507 and CVE-2022-27508 exist in Citrix ADC and Citrix Gateway, for which the vendor has issued a security bulletin. The vulnerabilities discovered in Citrix ADC and Citrix Gateway allow attackers to launch a distributed denial-of-service (DDoS) attack. The vendor has released updates to address these vulnerabilities. U.S. CISA is urging immediate patching of the vulnerabilities, which are rated medium and high.
[German]Preview update KB5014019, which Microsoft released for Windows 11 on May 24, 2022, is causing trouble for Trend Micro antivirus solutions. It clashes with Trend Micro's Ransomware Protection, the vendor acknowledged in an advisory.
[German]KrbRelayUp attacks allow local privilege escalation in Windows domain environments where LDAP signing is not enforced. The default Active Directory settings are still insecure. However, Microsoft has now explained in a post how administrators can protect systems against KrbRelayUp attacks in Windows domains.
[German]Interpol, together with the Nigerian police, was able to arrest the head of a BEC (Business Email Compromise) gang. The gang had been targeted by investigators for numerous email scams, and security researchers from Palo Alto Networks and other firms helped Interpol to uncover the group.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Google has been working for some time (see this tweet) to better integrate a Google Lens visual search tool into its browser. Now, Google is introducing the ability to evaluate via images using Google Lens via context menu in the desktop Chrome browser. Users can directly translate text within an image, identify an object in an image, or determine the original source of an image via Google Image Search in the browser. I became aware of this via this article on Techcrunch, which describes the details.
[German]In April 2022, I had reported issues with Windows Defender on Windows 10 (20H2). From extreme RAM usage to startup problems with Word or effects like black screen after user login has been observed/reported. Some issues were supposedly fixed by a Defender signature update, but users continue to have issues. Now an administrator from France contacted me by mail. Based on my blog posts, he was able to trace the problem back to a collision between Defender and FMAPOService.
[German]Since May 24, 2022, the terminals for card payments with giro and EC cards have been disrupted in numerous stores and gas stations nationwide in Germany. Customers of almost all banks were affected – although I also encountered institutions such as Sparkasse and Commerzbank in addition to Visa. In the meantime, it has emerged that a software error in the H5000 card terminals from Verifone was the cause, and communication with the payment service provider was blocked.
[German]London-based Eskenzi PR intend also in 2022 to grant the European Cybersecurity Blogger Award. There are usually various categories and in past years people like Troy Hunt have been nominated and awarded. I just found out that the German edition (it's only one edition that may be nominated) of my IT blog here has been nominated in the category "The Underdogs – Best Personal (non-commercial) Security Blog" and also in the category "The Tech Whizz – Best Technical Blog".
[German]Vendor Zyxel has published a security advisory warning of several vulnerabilities in firewalls, access points and access point controllers. Attackers can execute their own code via the vulnerabilities, block 2FA login and disrupt the devices. However, updates are available for the affected components to close the vulnerabilities.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
