[German]As of Sunday, December 19, 2021, there appears to have been a successful cyberattack using ransomware against French IT services provider Inetum. The attack affected the group's IT functions in France, but not in other countries, the company wrote. With 2 billion euros in annual revenue and 19,000 employees (2018), that's already one of the big ones in the industry.
[German]The security team of ACROS Security around founder Mitja Kolsek has just developed a micro patch to close a remote code execution vulnerability in the ms-officecmd handler of Windows and released it for customers with a 0patch PRO or Enterprise license. There is no CVE for this vulnerability yet. Here is some information about it.
[German]Microsoft has updated the so-called Security Baseline (a tool for security administrators in companies) for Windows 10 version 21H2 and released it generally. In the current version, not only the latest Windows 10 version is supported. There are also special guidelines for printing or protection against ransomware. Here is a brief overview.
[German]Another collective article on Microsoft Teams, which is widely used, but has a somewhat idiosyncratic implementation and above all is teeming with bugs and attracts negative attention in this regard every now and then. Today on offer: Since March 2021, Microsoft has been aware of four vulnerabilities in Teams that allow phishing via the link preview. And on Android, it can happen that Microsoft Teams blocks emergency calls. Here's a quick overview.
[German]The popular WordPress plugin All in One SEO has two vulnerabilities (CVE-2021-25036 and CVE-2021-25037), which make the corresponding installations vulnerable. Since the plugin is quite popular, you should immediately look to get an updated version. Otherwise, the WordPress instance will be hacked sooner or later.n sofort schauen, dass man eine aktualisierte Fassung erhält. Sonst wird die WordPress-Instanz früher oder später gehackt.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Microsoft warned of a new threat in a Techcommunity post on December 20, 2021. In November 2021 patchday, vulnerabilities CVE-2021-42287 and CVE-2021-42278 were fixed by Windows updates. Since December 2021, a proof of concept (PoC) has been available that abuses these vulnerabilities to take over an Active Directory domain. Here's some information – and at the same time I can help cover a topic that has been awaiting publication here for a few days.
[German]Any of you with more recent Dell notebooks or desktop systems? Then you might want to be a little cautious with recent BIOS (UEFI) updates and read this post beforehand. There is evidence that a BIOS update from Dell can prevent notebooks or desktop systems from booting. Affected are Dell Latitude notebooks (5320 and 5520), as well as the Dell Inspiron 5680 and the Alienware Aurora R8 desktops. Here is a rough overview of what is known.
[German]Auerswald s a German manufacturer of telephone systems for corporate use. Security researchers have discovered backdoors in the firmware of Auerswald telephone systems (e.g. COMpact 5500R) that could be used to reset the administrator password. This was disclosed on 20.12.2021. Here is some information about it. The backdoor has been removed in firmware versions 7.8A & 8.0B.
[German]CompuGroup Medical SE & Co. KGaA, a major medical services provider, has been the victim of a cyberattack. The Koblenz-based medical services provider admitted as much on Monday, Dec. 20, 2021. The internal IT systems are likely affected, which should affect some doctors, pharmacies, labs and clinics if they want to contact the company. Here is some information on what is known.
[German]Lenovo notebooks and devices that use the ImController service are vulnerable to a privilege escation vulnerability. This can allow attackers to execute commands with administrator privileges on the devices. However, there is an update to address both vulnerabilities.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
