Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: device
RCE vulnerability in Cisco SPA112 2-port phone adapter, drop that device
[German]US provider Cisco warns in a message about a critical vulnerability in one of its phone adapters. This vulnerability allows an attacker to take control of the device. Unfortunately, affected users can only dispose of this phone adapter, since the … Continue reading
Monitors on Dell Thunderbolt docking station not active after reboot
[German]Quick note to owners and administrators of Dell docking stations connected to notebooks via Thunderbolt. A reader informed me about problems with the WD22TB4, in connection with Dell notebooks (5530, 5430, 5431). After a reboot, monitors attached to the docking … Continue reading
BlackLotus UEFI bootkit bypasses Secure Boot in Windows 11
[German]Security researchers from ESET have discovered a malware in the wild that hijacks the UEFI and has been christened BlackLotus. BlackLotus is believed to be the first UEFI bootkit malware in the wild that can bypass Secure Boot on Windows … Continue reading
HP PC BIOS Security Updates (Feb. 2023)
[German]Vendor HP published a security article on February 21, 2023, addressing BIOS updates for HP systems. Potential time-of-check to time-of-use (TOCTOU) vulnerabilities in the BIOS of certain HP PC products have been identified, allowing for arbitrary code execution, denial of … Continue reading
New Jabra headset issues (e.g. Engage 75) with MS Teams (Jan./Feb. 2023).
[German]Another note for administrators and users of Jabra headsets (e.g. Jabra Engage 75) who use them in a corporate environment with Microsoft Teams. After there were already problems in connection with Microsoft Teams in December 2022, which were fixed via … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Issues restoring backups due to VDM with Intel Core i5 11th generation CPUs
[German]Unusual experience reported to me by a blog reader. He suddenly found himself facing the problem of not being able to write back a backup he had made on his Acer Swift 3 with an 11th generation Intel Core i5. … Continue reading
German white hat hackers buys US military biometrics equipment with Afghanistan biometric database at auction
[German]German white hacker organization purchased several used U.S. military biometrics devices at auction through an online auction platform (presumably eBay). During the forensic investigation, it became obvious that the military and the manufacturer used irresponsible handling. Data located on the … Continue reading
Keyboard Corsair K100 mysteriously auto typing characters and texts – it's not a keylogger or malware – blame the firmware
[German]Users of a mechanical Corsair K100 keyboard complain that it "types" words or sentences by itself. However, the fears of some users that a keylogger or a malware is causing that behavior are not true. According to the manufacturer, it … Continue reading
Details of the vulnerability in NETGEAR Nighthawk WiFi6 Router (RAX30 AX2400)
[German]Netgear has released a last-minute patch to close a vulnerability in the firmware of the Nighthawk WiFi6 router (RAX30 AX2400) on December 1, 2022. A misconfiguration allowed attackers in router firmware prior to version V1.0.9.90 to communicate with these devices … Continue reading
Dell, HP, Lenovo uses outdated OpenSSL versionen in UEFI
[German]A firmware analysis by security vendor Binarly has revealed that devices from Dell, HP and Lenovo use outdated versions of the OpenSSL encryption library in their UEFI implementations. This poses a risk, as encryption could be broken and the update … Continue reading