[German]Microsoft is working on improving the protection of the current versions of Windows 10, Windows 11 and Windows Server 2016 and their successors against harmful drivers. For this purpose, Windows Defender Application Control (only available in Enterprise editions) or HVCI or the S-Mode will support a driver block list with which the execution of drivers can be controlled and, if necessary, prevented.
[German]Security researchers from Bitdefender are drawing attention to vulnerabilities they have discovered in the firmware of Wyze CAM IP video cameras. According to Bitdefender, attackers can bypass the authentication process, gain complete control over the device and read information and configuration data from the camera's SD card or install malicious code. The gap can be closed with an update starting with the Wyze Cam V2. However, patching is not possible for the first version of the camera.
[German]motionEyeOS is a Linux distribution that turns your single-board computer into a video surveillance system. However, the developer of motionEyeOS can no longer actively work on this project for personal reasons, as he writes. If anyone is interested in taking on the project, they should contact the developer.
Today, 31 March 2022, is World Backup Day again – a good time to think about what an effective data backup strategy needs to do. A lot has changed in recent years! More and more data is hosted in the cloud, ransomware is one of the biggest threats to data today.
Microsoft has sent a security alert by mail as of 30 March 2022, with a warning about a the vulnerability CVE-2022-23278. This is a spoofing vulnerability in Microsoft Defender for Endpoint, which has already been closed in Android and iOS as of 8 March 2022. As of 30 March, Microsoft advises users to ensure devices have received the latest update.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Another note to administrators of Microsoft Exchange Servers. Security researchers have observed a malware campaign that distributes the IcedID banking Trojan and targets Microsoft Exchange Servers that have not received all security updates. The attackers are attempting to hook into existing email threads and inject malicious payloads.
[German]Google has released updates to Google Chrome 100.0.4896.60 for Windows and Mac on the desktop in the Stable Channel on 29 March 2022. The new version only brings the 100 in the version number, but also fixes 28 security vulnerabilities, some of which are classified as high. In addition, the Android browser has been updated to version 100.0.4896.5. Here is a brief overview.
[German]Trend Micro Research has published a new blog post reporting on a new malware campaign. Purple Fox operators are using updated tools and a new arrival vector to infect their victims. They use fake copies of popular software like WhatsApp installer to trop their first stage loader.
[German]Ukrtelecom, the largest fixed-line provider in Ukraine, was crippled for hours by a cyber attack, which also affected the internet. Furthermore, Ukraine has been responsible for botnet farms designed to spread disinformation since the beginning of the war. Military intelligence also exposed 620 employees of Russia's FSB intelligence agency and a BGP hijacking attack briefly diverted Twitter traffic to Russia.
[German]A brief question for European reader about an issue, which has become almost a running joke here on the blog: Did Windows 10/Windows 11 switch correctly to European summer time (daylight saving time) on Saturday night (26/27 March 2022)? I've just come across a hint that Windows 11 might have been a bit buggy.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
