[German]The social e-commerce app 21 Buttons has just had a major privacy incident. Security researchers found a cloud storage used by the app that was publicly accessible and contained personal and financial data of 21 Buttons users.
[German]A brief information for Citrix NetScaler administrators. Now also CERT-Bund warns about worldwide UDP:443 (EDT) accesses to Citrix Netscaler gateways. Citrix has published a workaround.
[German]A small note for my blog reader. It's such apparent certainties that make us feel 'well secured and taken care of' security-wise. All you need is Multifactor Authentication (MFA) and good security software and everything is secured. As of December 17, 2020, the title 'Multifactor Authentication' by Roger A. Grimes (published by Wiley) is out. Since I frequently writes about security topics here on the blog, I received a copy of the book in advance and read it crosswise a week ago.
[German] HP announced recently the end of lifetime Free HP Instant Ink subscription for customers. The Free Instant Ink offer was dedicated to customers with low print volume. After a lot of protest from customers, the program will continue at least for existing customers, but will end for new customers.
[German]In my blog post Windows 7 SP1: ESU Support for 2021 – Part 1 I had pointed out that from January 2021 a new ESU license is required to receive further security updates for this operating system. Those who do not have an ESU license (e.g. private users) or do not get it (e.g. because of Windows 7 Home or Windows Server 2008/R2) can use alternative solutions, which I present in part 2.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
to all my blog readers. And always remember: In 365 days it will be Christmas again.
[German]ACROS Security has released a micropatch for the CVE-2020-1013 (WSUS Spoofing, Local Privilege Escalation in Group Policies) vulnerability for Windows 7 and Server 2008 R2 (without ESU license). Here is some information about it.
[German]Small reminder for people still running systems with Windows 7 SP1. In January 2021 the support extension for the second year ends. So a little reminder today to renew the ESU license – and I've found a source that offers ESU license keys for 2021.
[German]Security researchers have proven that a vulnerability patched in Windows in July 2020 is still exploitable. The patch does not close a vulnerability sufficiently, so there is another way to exploit it.
[German]Microsoft published two blog posts from its Detection and Response Team (DART). The posts include advice for incident responders on recovering from systemic identity compromises (after Solarigate) and what to do if infected with the Sunburst Trojan.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
