[German]Security researchers have uncovered a secret network of 27 developers who have posted a total of 103 'potentially malicious' apps with 69 million downloads on the Google Play Store. The apps have now been largely removed from the Play Store by Google.
[German]Currently, there are a lot of reports from users about issues that occur in connection with update KB4549951 on Windows 10 version 1903 or version 1909. Here is a short overview.
Microsoft released a security update for the Chromium Edge browser on April 23, 2020 (see ADV200002). This update fixes the vulnerabilities CVE-2020-6458, CVE-2020-6459 und CVE-2020-6460. The new Chromium Edge can be downloaded from this website.
[German]Is the there anything wrong with the report about two 0-day vulnerabilities in iOS that allow iPhones and iPads to be 'taken over' by mail? At least Apple and Sophos have doubts about the report released this week by a security researcher.
[German]There may be a workaround for owners of a Surface Pro 7 that can prevent the Microsoft tablet from spontaneously shutting down. Here are some hints about the problem and suggested workarounds.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]The US secret service NSA and the Australian secret service have issued a joint warning. Hackers are increasingly trying to exploit unpatched vulnerabilities in products to infiltrate systems via web shell malware.
[German]On patchday, January 14, 2020, Microsoft has closed the vulnerability CVE-2020-0624 (Win32k Elevation of Privilege) with security updates. Now I have found a Proof of Concept (PoC).
[German]Today again an overview of security issues in IT. It's about a data leak at a startup that does payment processing, about weaknesses in smart home and compromised apps up to a hacked ad server.
[German]The Windows version of Cisco AnyConnect Secure Mobility client has a vulnerability in it's auto update, that can be misused for privilege escalation. A patch is available.
[German]Security researchers have found two 0-day exploits in virtually all iOS versions (iOS 6 through 13) that allow remote code execution (RCE) via mail. The vulnerabilities are likely to be actively exploited.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
