[German]Extremely unpleasant story if the whole thing turns out to be true. According to a report, the provider OKTA is investigating a possible hack. Okta is a provider of authentication services in the cloud, so a successful hack could have far-reaching consequences. According to reports, the Lapsus$ gang is claiming the hack.
[German]I'm posting this briefly here on the blog because people in the readership may be using Western Digital's EdgeRover desktop application on macOS or Windows. The vulnerability CVE-2022-22988 in older versions of the app allows attackers to gain elevated privileges under the operating systems mentioned. The manufacturer has provided an update to close the vulnerability.
[German]Security researchers from Pradeo have discovered an Android app Craftsart Cartoon Photo Tools in the Google Play Store. It is infected with the well-known Facestealer Trojan and 100,000 people have downloaded the app onto their devices. The Trojan steals Facebook credentials in a fairly trivial way.
[German]The hacker group Lapsuss$ claims to have hacked the repositories with the source codes of the Microsoft products Azure, Bing, Bing Maps and Cortana and to have extracted source code. Hours ago, it was said that Microsoft was investigating whether the Azure source code repository had been hacked. Now the hacker group Lapsus$ has published the first evidence of this hack.
[German]The ACROS Security team around founder Mitja Kolsek has just developed a micro-patch to close a User Profile Service Privilege Escalation vulnerability (CVE-2021-34484) of Windows 10 and Windows Server 2019. It is the third micro-patch, as Microsoft security updates do not close the vulnerability. The micro-patch is available free of charge for all customers with the 0patch agent until Microsoft closes this vulnerability. Here is some information about it.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Another small addendum from last week. Users who install Windows 11 with a trick on hardware that does not support the minimum requirements get a corresponding notice as a watermark on the desktop in Insider build 22000.588. Even those who hid this watermark in previous builds via a registry hack will now see it again.
[German]Did you know that Firefox registers a unique installer ID in the browser? When someone downloads the Firefox installer from the Mozilla web pages and then installs the Firefox browser, a unique identifier is generated during this process and sent to Mozilla when the browser is first launched. This identifier, called dltoken, is confirmed in a Mozilla bug report. Addendum: Statement from Mozilla added.
[German]Apple is currently (March 21, 2022, 18:00 CET) experiencing a major disruption of its cloud services, that is probably affecting the entire world. Many Apple services from the cloud such as iCloud Calendar, iCloud Mail, iTunes Store, Apple Music, Radio are currently unavailable. However, it looks like Apple is already working on fixing the disruption as the number of disruption reports are decreasing.
[German]The FBI and the U.S. Treasury Department have just released new Indicators of Compromise (IOCs) for the AvosLocker ransomware. These are indications of how to detect an infection with this ransomware. The information can be used in your own security information and event management (SIEM) systems, if necessary.
[German]U.S. manufacturer Solarwinds warns its customers of possible cyber attacks and recommends uninstalling Web Help Desk (WHD) 12.7.5 in a security message dated March 15, 2022. The background is attacks on Web Help Desk (WHD) 12.7.5 reported by customers. So far it is still unclear what exactly happened, it is probably a precautionary measure.
-
MVP:
2013 – 2016
WIMVP:
2017 – 2020
