Small note for users of the Opera browser. A reader has brought to my attention that the browser goes on strike with some web pages and throws an ERR_TIMED_OUT.
Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Edge: Has Microsoft lost its track?
[German]Interesting question that just crossed my path. It revolves around whether Microsoft has lost its compass in the development of the Chromium Edge browser and is growing a new bloat ware. At least, that's the question that crosses your mind when you see what developers are making out of Edge.
Sophos fails with timely malware sample analysis, support contact options miserable
[German]Actually, antivirus vendors should be happy when attentive users submit malware samples that are not detected by their scan engines so far. Especially if it is known that it is a malware file, a quick reaction is recommended. An administrator emailed me a case before Christmas that, at least in this process, raises doubts about whether it makes sense to submit samples.
Norwegian publishing group Amedia affected by cyber attack
[German]Norwegian publishing group Amedia has been the victim of a cyber attack. As a result of this attack (I assume Ramsomware), newspapers could no longer be published in paper form and advertisements were also no longer placed – the systems concerned are completely down. Here is a rough overview of what is known.
Users report compromised LastPass master password
[German]Is there a problem with the password management solution LastPass? LastPass users fear compromised master passwords. They received email alerts that someone tried to log into their accounts from unknown locations. This could indicate a larger security issue. In any case, LastPass users should change their master password as a precaution and enable two-factor authentication for the service.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Sophos: Thread actors test CAB-less 40444 (MSHTL vulnerability) attacks in Windows
[German]Security vendor Sophos published information about a new attack scenario in a series of tweets just before Christmas. Attackers are currently testing a new attack vector via RAR attachments with Word documents and scripts in mails. However, this involves distributing payloads hidden in RAR files with an Office document, which then use PowerShell to attack via script. I present this briefly here in the blog.
Log4j security messages (12/28/2021)
[German]It looks like the big wave of hacks via the log4j vulnerability failed to materialize over Christmas. But there are cases, like at the Belgian Ministry of Defense, which were attacked via log4j. However, the attacks will possibly follow in January 2022. Microsoft has created a status indicator for Defender 365 that lists vulnerable devices on a network. Here is a brief overview of the information as of Dec. 28, 2021.
Cloud outages 2021: When Akamai, Facebook and Amazon was down
[German]The year 2021 was characterized by many uncertainties and the return of the coronavirus infection wave. At the latest since the outbreak of the pandemic, terms such as Next Normal and digital user experience have entered the vocabulary of many people. In addition, as a result of changing social and economic conditions, many online services and digital platforms have experienced a huge increase in user numbers. But what happens when the Internet connection is interrupted and everything is forced offline? After all, we've had outages of Facebook, Amazon Web Services (AWS), etc.
Ransomware eCh0raix attacks QNAP devices (Dez. 2021)
[German]Owners of QNAP NAS drives that are accessible via the Internet were attacked by the eCh0raix ransomware in a new campaign around Christmas. There are only a few people affected, but this malware, also known as QNAPCrypt, encrypts the devices and extorts a ransom. The ransomware is not new either, as I had warned about attacks in June 2020 (see QNAP Security Advisory about eCh0raix Ransomware).
Besitzer von QNAP-NAS-Laufwerken, die per Internet erreichbar sind, wurden rund um Weihnachten in einer neuen Kampagne von der eCh0raix-Ransomware angegriffen. Es sind zwar nur wenige Betroffene, aber diese auch als QNAPCrypt bekannte Schadsoftware verschlüsselt die Geräte und erpresst Lösegeld. Neu ist die Ransomware auch nicht, hatte ich doch im Juni 2020 vor Angriffen gewarnt (siehe QNAP Sicherheitswarnung vor eCh0raix-Ransomware).
Hackers Targets Social Media Accounts
[German]Users of social media platforms such as Facebook, LinkedIn, TikTok, Instagram, etc. are the focus of hackers and Internet criminals. Anyone who can compromise such an account has a wide range of options for misuse. Whoever can access the data of a social media account often gets hold of very personal data. Security provider Check Point Technologies GmbH points out that social media users are the focus of hackers, especially during the festive season.