SolarWinds hack: Microsoft and others also affected?

[German]The list of those affected by the cyberattack via SolarWind's Orion SUNBURST backdoor is growing. Microsoft has also found the Trojan in its network (no data is said to have been leaked). And there is a second attack by a probably second hacker group (Beserk Bear) with more names of targets.

Continue reading

Posted in Security | Tagged | Leave a comment

SUNBURST: US nuclear weapons agency also hacked, new findings

[German]The hack of several U.S. agencies via the SUNBURST backdoor in SolarWinds Orion software is growing. The networks of the National Nuclear Security Administration (NNSA) and the US Department of Energy (DOE) have also been hacked. The attackers used multiple strategies and the cleanup may take months.

Continue reading

Posted in Security | Tagged | Leave a comment

Windows 10 20H2: ChkDsk damages file system on SSDs with Update KB4592438 installed

[German]In Windows 10 20H2 with installed cumulative update KB4592438, chkdsk causes massive issues. It destroys the file system during a disk check on SSDs, so Windows 10 can't start after a reboot. Here is some information about the problem and the affected Windows 10 build. Addenum: Microsoft has fixed that bug.

Continue reading

Posted in issue, Windows | Tagged , , , | 22 Comments

Google acquires Neverware, whose CloudReady allows Chrome OS to be installed on old Windows PCs

[German]Will individuals and schools soon be able to keep their old Windows computers running Google's Chrome OS? That's what an acquisition on Google's part, which just came to my attention, suggests.

Continue reading

Posted in devices, Software | Tagged | Leave a comment

Cell phone fraud: millions stolen from banks in the U.S. and EU

[German]Security researchers from IBM Trusteer have openly lived a large-scale fraud campaign. Those behind it were able to steal millions from banks in the US and EU using cell phone emulator farms.

Continue reading

Posted in Security | Tagged , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...


Critical 0-day vulnerability in HPE Systems Insight Manager (SIM) 7.6.x

[German]Hewlett Packard Enterprise (HPE) has issued a security advisory. There is a critical vulnerability (0-day bug) in HPE Systems Insight Manager (SIM) that affects Linux and Windows versions.

Continue reading

Posted in Security, Software | Tagged , | Leave a comment

SUNBURST malware: Analytic Tool SolarFlare, a 'Kill Switch' and EINSTEIN's fail

[German]Small additions in the matter of hacking of companies and US authorities by the SUNBURST malware delivered via update for the Orion software. There is an analysis tool SolarFlare, to determine what permissions the Orion software had. The domain of the hackers with the C&C server has been taken over – Microsoft and FireEye have established 'a killswitch'. And the software Einstein, which was developed at a cost of billions, did not notice anything about this hack.

Continue reading

Posted in Security | Tagged | Leave a comment

SUNBURST malware was injected into SolarWind's source code base

[German]An analysis of the supply chain attack on the Orion product line of the US security vendor SolarWinds suggests that the attackers had access to the source code base. For months, they prepared the insertion of the Trojan, which acted as a backdoor, and injected it into the source code.

Continue reading

Posted in Security | Tagged | 1 Comment

Windows 10 2004/20H2: Thunderbolt NVMe BSOD bug fixed

[German]Another topic I like to cover. With the update KB4586853 for Windows 10 2004 and 20H2, Microsoft also addressed the bug that caused bluescreens on Thunderbolt NVMe SSD units. The upgrade block has therefore been lifted as of December 11, 2020.

Continue reading

Posted in Windows | Tagged , | Leave a comment

Microsoft revisions to various Office CVEs (December 15, 2020)

[German]Microsoft has published an overview of revisions of various CVEs as of December 15, 2020. I received the whole thing by mail last night, and I'm posting it here for your information.

Continue reading

Posted in Office, Security | Tagged , | Leave a comment