0patch fixes CVE-2020-1048 in Windows 7/Server 2008 R2

Posted on 2020-05-21 by guenni

win7 [German]ACROS Security has released a micropatch for the Windows Print Spooler Elevation of Privilege vulnerability CVE-2020-1048 in Windows 7 and Server 2008 R2 (without ESU license).

Continue reading

Posted in Security, Windows | Tagged , , , , | Leave a comment
Advertising

Windows 10: (Intel Microcode-)Updates (May 20, 2020)

Posted on 2020-05-21 by guenni

[German]On May 20, 2020, Microsoft has updated another batch of microcode updates for Windows 10 version 1507 to 1909 (but these are probably old updates that were already updated in February 2020 as well).

Continue reading

Posted in Security, Update, Windows | Tagged , , | 9 Comments

Warning: Infected Cookie Consent logo delivers Ransomware

Posted on 2020-05-20 by guenni

[German]An immediate warning: It seems that cyber criminals has obtained an old (orphaned) Amazon AWS S3 bucked used some times ago to host a Cookie Consent solution. Now the Cookie Consent logo delivered from the Amazon CDN contains a malware/ransomware script. It seems, that thousands of website, using old code, are shipping now this malicious content. Probably it's a ransomware attack. Here is what I've found out so far.

Continue reading

Posted in Security | Tagged , | 2 Comments

PowerToys 0.18 with Run launcher released

Posted on 2020-05-20 by guenni

[German]Microsoft released version 0.18 of PowerToys for Windows 10 users a few hours ago. These tools are free and offer additional features for Windows 10. The new version 0.18 includes the new Run launcher. Addendum: Clint Rutkas has announced, that version 0.18.1 is 'coming this night', but till now, I haven't found a change log.

Continue reading

Posted in Software, Windows | Tagged , | 3 Comments

Chrome 83 with changes and security fixes released

Posted on 2020-05-20 by guenni

[German]Google's developers have released the Chrome Browser in version 83 on 19 May 2020. The browser update now automatically uses DNS-over-HTTPS. The update also closes 83 security holes of earlier versions.

Continue reading

Posted in browser, Security, Software, Update | Tagged , | 2 Comments
Advertising

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

British airline EasyJet hacked, customer data leaked

Posted on 2020-05-20 by guenni

[German] British airline EasyJet was the victim of a cyber attack. The attackers were able to extract customer data (such as e-mail addresses, travel data) from around nine million customers. There were also 2,000 credit card records among them. Addendum: The hack was bigger as confirmed earlier.

Continue reading

Posted in Security | Tagged , | Leave a comment
Advertising

Security incident: Source Code for Mercedes OLU leaked

Posted on 2020-05-20 by guenni

[German]There has been a security incident at Mercedes Benz. A Swiss engineer found a GitLab server where he could create an account and then access the source code of onboard logic units (OLUs). These OLUs are built into the new 'Smart Car' models of the Mercedes-Benz VANs (Vito, eVito) and allow the use of Daimler digital services.

Continue reading

Posted in Security | Tagged | Leave a comment

Virtualbox 6.1.8, 6.0.22 and 5.2.42 released

Posted on 2020-05-20 by guenni

Virtualbox[German]Oracle's developers have already released Virtualbox version 6.1.8 (as well as 6.0.22 and 5.2.42) on 15 May 2020. These are maintenance updates, which should fix bugs of earlier versions.

Continue reading

Posted in Virtualization | Tagged , | Leave a comment
Advertising

Windows: Reverse RDP attacks in third-party software possible

Posted on 2020-05-19 by guenni

[German]A poorly patched vulnerability CVE-2019-0887 in Windows makes the systems vulnerable to attacks via third-party RDP applications. It could also allow a client used to establish the RDP connection to be attacked by malware on the remote machine.

Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

Microsoft sends a cease and desist to Berlin’s data protection commissioner

Posted on 2020-05-19 by guenni

[German]Microsoft Germany has send a cease and desist to Berlin's Commissioner for Data Protection and Freedom of Information. An action that leaves many observers somewhat speechless. The warning concerns guidelines for video conferencing, which provide information on test criteria for the safe use (also GDPR) of videoconferencing in companies and public authorities.

Continue reading

Posted in General | Tagged , , | Leave a comment