Nextcloud files competition complaint against Microsoft over OneDrive and Teams in Windows 11

Posted on 2021-11-27 by guenni

Paragraph[German]Stuttgart-based software company Nextcloud has filed a competition complaint against Microsoft with the German Federal Cartel Office. The accusation is that Microsoft has a dominant market position and is exploiting it. It is about the integration of OneDrive and Microsoft Teams in Windows 11. In the meantime, a competition complaint has also been submitted to the EU Commission by 30 EU organizations because of the same accusations.

Continue reading

Posted in Cloud, General, Windows | Tagged , , , | Leave a comment

Did Adobe blocked my Twitter account via an DMCA complaint after a critical report about issues?

Posted on 2021-11-27 by guenni

[German]So now it's happened: Twitter has suspended my account because Adobe filed a DMCA (Digital Millennium Copyright Act) complaint against a tweet of mine about bugs in the Adobe Acrobat DC installer. I has see this coming, since it hit a blog reader two days earlier and I alerted Adobe's social media teams about this false case via Twitter. Stupidity? Ignorance? Or simply keeping unwelcome coverage off the Internet?

Continue reading

Posted in General | Tagged , | 1 Comment

SentinelLabs finds three vulnerabilities in Oracle VirtualBox

Posted on 2021-11-27 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Security researchers from SentinelLabs have taken a closer look at Oracle's virtualization solution Virtualbox, which runs on Windows, macOS and Linux. They found three vulnerabilities in the virtualization tool. A vulnerability in Oracle VM VirtualBox allows program takeover and denial-of-service (DoS) attacks by attackers. However, an update for Virtualbox is now available.

Continue reading

Posted in Security, Virtualization | Tagged , | Leave a comment

Printjack: Security researchers warn against attacks on printers

Posted on 2021-11-27 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Printers are widespread, even if the paperless office is the goal. Printers are networked, but rarely protected against attacks. People don't think the devices are really worth protecting. But in times of IoT and under the General Data Protection Regulation (GDPR), this can lead to significant problems and nasty surprises. Researchers from Italy have tackled the issue and found three attack possibilities at once, labeled Printjack, that can lead to security problems and GDPR violations for printers.

Continue reading

Posted in devices, Security | Tagged , | Leave a comment

Security vulnerabilities in iDRAC8/9 software put Dell servers at risk

Posted on 2021-11-27 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Multiple vulnerabilities existed in the iDRAC8 and iDRAC9 management software used on Dell servers. The vulnerabilities allowed remote attackers to control the execution of processes and gain access to the underlying operating system via a stack buffer overflow flaw. Dell has since closed these vulnerabilities.

Continue reading

Posted in Security | Tagged , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Sophos XG – Mail delivery blocked by antivirus pattern (Nov. 25, 2021)

Posted on 2021-11-26 by guenni

Mail[German]Brief note to administrators who use Sophos XG as a firewall and security solution. On November 25, 2021, there was probably an update to the antivirus pattern that blocked at least one user from sending mail. The IT administrator in question pointed this out to me and I am posting it here on the blog for your information.

Continue reading

Posted in issue, Security, Software | Tagged , , | Leave a comment

WordPress Plugin Hide My WP with SQL Injection Vulnerability

Posted on 2021-11-26 by guenni

[German]One of the most popular "security" plugins for WordPress, Hide My WP, has just attracted negative attention due to a fat SQL injection vulnerability. Another bug allows an attacker to simply disable the plugin

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

RATDispenser: JavaScript-Loader dispenses Remote Access Trojaners (RAT) in Windows

Posted on 2021-11-26 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Another short addendum concerning security, which came to my attention the other day. Security researchers at HP Thread-Research have discovered a loader written in JavaScript that installs Remote Access Trojans (RATs) on Windows systems. The developer now appears to be working with eight malware groups.

Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

Windows Server 2019/2022: Microsoft Defender for Endpoint fails after Nov. 2021 updates

Posted on 2021-11-25 by guenni

Windows[German]Short message for administrators who are already productive with Windows Server 2019 or even Windows Server 2022 and use Microsoft Defender for Endpoint as virus protection. Microsoft has admitted that after installing certain updates on these Windows Server versions, problems can occur and Defender no longer starts.

Continue reading

Posted in issue, Security, Update, Windows | Tagged , , , | Leave a comment

Windows attacks via 0-day in installer and vulnerability in MSHTML

Posted on 2021-11-25 by guenni

Windows[German]Attackers are exploiting a now-patched CVE-2021-40444 vulnerability in Microsoft's MSHTML routines to attack Windows systems. And the 0-day vulnerability in Windows Installer that I addressed here on the blog the other days is being exploited by malware for privilege escalation. Here's an overview of the threats to Windows users via these two rails.

Continue reading

Posted in Security, Windows | Tagged , | Leave a comment