[German]The manufacturer Zyxel seems to have a problem with Zyxel USG FLEX / ATP Series Firewalls. With a certain firmware, the Zyxel USG FLEX / ATP Series Firewall can no longer boot successfully and hangs. The manufacturer warns about the configuration and is working on a firmware update that fixes this problem.
[German]Veeam has issued a security alert warning of critical vulnerabilities in Veeam Backup & Replication. Attackers could use these vulnerabilities to take over systems running Linux or Windows. German blog reader der Seb posted the links to the relevant Veeam security alerts kb4288, kb4289 und kb4290 in this comment (thanks for that). The support posts in question have the updates to fix the vulnerabilities with download links as well as further notes on the vulnerabilities.
[German]McAfee has released a security alert and update for McAfee Total Protection. The update fixes the CVE-2022-0280 vulnerability, which is rated high. A vulnerability exists in the QuickClean feature of McAfee Total Protection for Windows prior to version 16.0.43 that allows a local user to escalate their privileges and delete arbitrary files. This could result in sensitive files being deleted and potentially cause a denial of service. This attack exploits the way symlinks are created and how the product works with them. Details can be found in the security alert dated 7/3/2022. (via)
[German]Activists of the hacker collective Anonymous have announced actions against Russian companies after the Russian army invaded Ukraine. According to media reports and an article on Anonleaks, members of Anonymous successfully hacked the German branch of the Russian energy giant Rosneft. In the hack, 20 terabytes of data were siphoned off before the hack was discovered and further access was prevented.
[German]Do any of you have TP-Link routers in use? There is disturbing information of the "hands off these devices" type. This is because there are user reports that TP-Link router firmware is sharing network traffic with third-party vendors (specifically AVIRA via HomeShield). Blog reader Marcel alerted me to the issue on Facebook (thanks for that) and I came across several reports on the subject. The background is cloud integrations with certain AVIRA features implemented as part of a partnership between TP-Link and AVIRA. The whole thing could mean trouble for TP-Link – and can put companies or people in the home office in a lot of trouble – there is, after all, a GDPR violation.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]The number of publicly disclosed vulnerabilities affecting medical devices, industrial control systems (ICS) or the extended Internet of Things (XIoT) is continuously increasing. In the last four years, the number of disclosed vulnerabilities in industrial control systems (ICS) has more than doubled (up 110%). In the second half of 2021 alone, the number increased by 25 percent compared to the previous six months. This is according to a corresponding report by security provider Claroty.
[German]In Windows 10 version (20H2 – 21H2) as well as in Windows 11 there is a problem when resetting the operating system if all user files are to be deleted (wipe) at the same time. The problem was already noticed some time ago and has been confirmed in the meantime. The March 2022 updates were supposed to correct the problem, but they don't seem to work reliably. Anyway, the wipe problem is not off the table. Here is some information about the issue.zuverlässig zu arbeiten. Jedenfalls ist das Wipe-Problem nicht vom Tisch. Hier ein paar Informationen zum Thema.
[German]The game manufacturer Ubisoft has become the victim of a cyber attack in which data was leaked. The manufacturer has since confirmed this cyber attack. Now the cyber gang Lapsus$ has claimed responsibility for the cyber attack. After the hack of Nvidia and Samsung, it is now the third case in which the group has hacked a major company.
[German]There are strange occurrences since February 24, 2022 in the signals of the Global Positioning System (GPS). The GPS signal has been disturbed in the Baltic Sea region and the Finnish government is now warning of incorrect GPS data. Several flights had to be recalled already. Here is some information, what is known to me.
[German]As of March 1, 2022, Microsoft has released regular updates for the MSI installation versions of Microsoft Office 2013 and 2016. After installing these updates, users complain that accessing Access databases from applications no longer works. The applications hang or throw errors.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
