[German]The Italian spirits producer Campari Group has fallen victim to a Ragnar Locker ransomware infection. Some systems of the Campari Group had to be restored after the files were encrypted.
[German]Besides the lsass.exe crash problem (see Windows 10 2004/20H2 lsass.exe crash issue (Oct. 2020) confirmed), Microsoft has confirmed another problem with Windows 10. After upgrading to Windows 10 version 2004 or version 20H2, plugging in a Thunderbolt NVMe SSD may trigger a BlueScreen.
[German]The developers of the e-mail client Thunderbird released Thunderbird 78.4.1 on November 6, 2020. It is a maintenance update for the 78 main version of the e-mail client, which fixes some bugs.
[German]In Windows 10 20H2 (and 2004), the Local Security Authority Subsystem Service (lsass.exe) crashes for some users in certain constellations (mostly after upgrading from Windows 7). Now Microsoft has published details about this bug and the reason for the crashes.
[German]I take the topic again. Does Microsoft Defender show defined scan exclusions under Windows 10? Or is the GUI bug I mentioned in this blog still present after Defender updates?
[German]Apple has just released iOS 12.4.9 for older devices (from 2013 onwards, which will no longer get an update to iOS 14). This update contains security updates for this operating system version. Details can be found here. Additionally, iOS 14.2 has been released for newer Apple devices. Apple has disclosed the details of the fixes in this support article.
[German]The day before yesterday I had reported about a strange event. A balance of nearly $1 billion was withdrawn from a Bitcoin account. What looked like a hack now turned out to be a seizure action by the US government.
[German]I guess that went a little wrong. In 2015 a website (attributed to Deloitte) 'Test your Hacker IQ' was launched. There you could do a quiz about your knowledge of hacking techniques. The site remained online, and a security researcher was now able to retrieve a YAML configuration file, which contained the access data for accessing the used mySQL database in plain text. A little Friday story about a marketing campaign that fell on people's feet five years later
[German]Cisco hat vor wenigen Stunden eine Zero-Day-Schwachstelle in der Cisco AnyConnect Secure Mobility Client-Software bekannt gegeben. Zudem gibt es einen öffentlich zugänglichem Proof-of-Concept-Angriffscode, wie der Hersteller einräumte.
[German]Microsoft employee Mark Russinovich gave an update to individual modules of the Sysinternals tools, as I saw the night in a tweet. Here is a short overview of these updates.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
