Dell Windows drivers still vulnerable to kernel attacks

Posted on 2021-12-19 by guenni

Windows[German]Users of Dell systems are still at risk of having their Windows systems compromised via Dell drivers through kernel attacks. The problem was supposed to be fixed by updates as early as May 2021. However, security researchers from Rapid7 are now sounding the alarm that these security updates have not closed all vulnerabilities. However, security researchers from Rapid7 are now sounding the alarm that these security updates have not closed all vulnerabilities. True, administrator privileges are required to install the drivers. But it looks like this approach is being used by cyber gangs for attacks. However, there are countermeasures in the business environment.

Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

Oracle reportedly negotiating acquisition of medical software provider Cerner

Posted on 2021-12-19 by guenni

Gesundheit (Pexels, frei verwendbar)

Is this really good news? A major takeover in the healthcare sector, or rather in the area of software for healthcare, may be on the horizon. According to reports, the US company Oracle is negotiating the takeover of Cerner. This is a company that also develops software for digitalization in healthcare in Germany. The takeover is said to be worth $30 billion.

Continue reading

Posted in General, Software | Tagged | Leave a comment

Analysis: How TeamTNT compromises Docker Hub accounts

Posted on 2021-12-19 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Security vendor Trend Micro has published a report highlighting how threat actor TeamTNT is going about compromising Docker Hub accounts. This is a follow up article, after they wrote about compromised Docker hub account abused for crypto mining. If anyone is running Docker, you might want to take a look.

Continue reading

Posted in Security | Tagged | Leave a comment

Microsoft Security Update Revisions Dec. 14./16. 2021

Posted on 2021-12-18 by guenni

Microsoft released some Security Update revisions to vulnerabilities on December 14 and 16. I am simply posting the relevant information as an uncommented addendum on the blog for your information.

Continue reading

Posted in Security | Tagged | Leave a comment

Log4j-News (2021/12/18)

Posted on 2021-12-18 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]The log4j vulnerability CVE-2021-44228 keeps sending shockwaves through the IT scene. Latest reports say that a majority of companies have not patched the vulnerability in their software. In addition, a new DoS vulnerability has been found in the library, for which there is no patch yet. Meanwhile, attacks continue to run to new highs. Here's an overview to close out the week.

Continue reading

Posted in Security | Tagged | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Edge 96.0.1054.62

Posted on 2021-12-18 by guenni

Edge[German]Microsoft has updated the Edge browser to version 96.0.1054.62 as of December 17, 2021. The release notes only say Fixed various bugs and performance issues. The browser should update automatically, but can also be downloaded here.

Posted in browser, Update | Tagged , | Leave a comment

Sennheiser discloses customer data via old cloud instance

Posted on 2021-12-18 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Audio gigant Sennheiser was victim of a data protection incident. Sennheiser (audio technology left an old cloud account unprotected on the Internet so that third parties could access customer data. Security researcher found the open Amazon AWS S3-Bitbucket and informed the vender who then secured the data base immediately.

Continue reading

Posted in Security | Tagged | Leave a comment

Insides on Ireland's health service executive ransomware case in May 2021

Posted on 2021-12-17 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]In May 2021, there was a ransomware attack on Ireland's Health Service Executive (HSE). PricewaterhouseCoopers recently provided an analysis of what went wrong. Below I briefly compiled the findings of the investigation from that case.

Continue reading

Posted in Security | Tagged | Leave a comment

Microsoft confirms issues in all Access versions after December 2021 Update

Posted on 2021-12-17 by guenni

[German]The December 14, 2021 security updates for Microsoft Office (MSI installer version) cause issues with Microsoft Access. Only one user can still access the databases. In the meantime it is clear that the Click-2-Run versions of Office/Access are also affected by updates. Microsoft has confirmed the problems in the meantime, so I give a short overview again.

Continue reading

Posted in issue, Office, Update | Tagged , , , , | 2 Comments

Fail: Toyota enables remote start of its connected cars only with monthly subscription

Posted on 2021-12-17 by guenni

Stop - Pixabay[German]A brief information from the world of networked cars, which is constantly being praised by manufactures. The car manufacturers are seeing the whole thing as an goldmine. Japanese manufacturer Toyota (Slogan: Nothing is impossible) is forging ahead. After some time, the remote-controlled start of a corresponding vehicle will requires a subscription – around 8 US dollars per month – according to some US reports.

Continue reading

Posted in General, Software | Tagged , , | 2 Comments