Purple Fox with new infection vector

Sicherheit (Pexels, allgemeine Nutzung)[German]Trend Micro Research has published a new blog post reporting on a new malware campaign. Purple Fox operators are using updated tools and a new arrival vector to infect their victims. They use fake copies of popular software like WhatsApp installer to trop their first stage loader.

Continue reading

Posted in Security | Tagged | Leave a comment

Ukraine Doxing des FSB members, dismantles bot farms, telecom operator hit by cyber attack

Sicherheit (Pexels, allgemeine Nutzung)[German]Ukrtelecom, the largest fixed-line provider in Ukraine, was crippled for hours by a cyber attack, which also affected the internet. Furthermore, Ukraine has been responsible for botnet farms designed to spread disinformation since the beginning of the war. Military intelligence also exposed 620 employees of Russia's FSB intelligence agency and a BGP hijacking attack briefly diverted Twitter traffic to Russia.

Continue reading

Posted in Security | Tagged | Leave a comment

Windows: Were there issues with CET daylight saving time changeover in 2022?

Windows[German]A brief question for European reader about an issue, which has become almost a running joke here on the blog: Did Windows 10/Windows 11 switch correctly to European summer time (daylight saving time) on Saturday night (26/27 March 2022)? I've just come across a hint that Windows 11 might have been a bit buggy.

Continue reading

Posted in issue, Windows | Tagged , | Leave a comment

Windows 11 Preview Update KB5011563 (2022/03/28)

Windows[German]Microsoft has released the optional cumulative (preview) update KB5011563 for Windows 11 on 28 March 2022. The remaining preview updates for Windows 10 and Windows Server were already released on 22 March 2022. However, update KB5011563 was previously tested with Windows 11 Insiders. Below I give an overview of these updates for Windows 11.

Continue reading

Posted in Update, Windows | Tagged , | Leave a comment

Okta admits a mistake regarding disclosure in "Lapsus$ hack"

Sicherheit (Pexels, allgemeine Nutzung)[German]This is the "best" image that the authentication service Okta is giving off right now. The Lapsus$ gang had claimed to have hacked Okta, which possible could have threatened hundreds of customers and made them victims of attacks. But it turned out to be "much ado about little". But Okta had to admit a lapse of its own: There was a misjudgement and they informed the public about the facts far too late and reacted.

Continue reading

Posted in Security | Tagged | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...


Administrative Templates (.admx) v2.0 up to Windows 10 November 2021 Update (21H2)

Windows[German]Brief addendum from last week. Microsoft has released version 2.0 of its administrative templates (.admx files) for Group Policy for Windows – from Windows 7 up to Windows 10 November 2021 Update (21H2) as of 22 March 2022. Windows 11/Windows Server 2022 are not supported. The templates allow administrators to manage registry-based policy settings.

Continue reading

Posted in Windows | Tagged | 2 Comments

Microsoft Security Update Revisions (March 25, 2022)

Microsoft has released several revisions for security updates on 25 March 2022. The revisions address changed vulnerability assessments. Here is an uncommented overview.

Continue reading

Posted in Security | Tagged | Leave a comment

Fix for vulnerability CVE-2022-104 in Sophos Firewall (v18.5 MR3)

Sicherheit (Pexels, allgemeine Nutzung)[German]A security researchers have found a vulnerability CVE-2022-104 (authentication bypass) in Sophos firewalls (v18.5 MR3 and older) that allows authentication bypass. Attackers could thus take over the firewall and execute malicious code remotely. However, Sophos has since released an update for the firewall products in question.

Continue reading

Posted in Security, Software, Update | Tagged , | Leave a comment

"Browser in the browser" Phishing

Sicherheit (Pexels, allgemeine Nutzung)[German]A security researcher has recently introduced a technique to make intercepting credentials via phishing even more efficient. He calls the technique BitB, short for "browser in the browser". A fake browser window is displayed within a real login page in order to fake an OAuth login page. This allows login data to be tapped without the user being aware of it.

Continue reading

Posted in Security | Tagged | Leave a comment

Windows 10/11: Backup and Restore from Win7 is broken since Jan. 2022

Amazon[English]Another short addendum from this week on a topic that should hardly concern anyone. Microsoft has admitted that the "Backup and Restore" function known from Windows 7 for saving and restoring backups is now simply broken in Windows 10 and Windows 11. This has been the case since January 2022, when an update broke the function.

Continue reading

Posted in issue, Update, Windows | Tagged , , , | 1 Comment