Tag Archives: devices

BIOS updates fix critical vulnerabilities in HP's business and consumer models and Intel CPUs (May 2022)

[German]Hewlett Packard (HP) has recently published a security advisory. This warning addresses two vulnerabilities in the firmware of over 200 HP models (business and consumer variants) that allow the firmware to be overwritten. The vulnerabilities have been given a security … Continue reading

Posted in devices, Security | Tagged , | Leave a comment

Advertising

TLStorm 2.0: 5 critical vulnerabilities in network switches from Aruba and Avaya

[German]Network switches from Aruba and Avaya are vulnerable to RCE attacks due to 5 vulnerabilities. Security researchers from Armis, a company specializing in networked devices, who discovered the vulnerabilities call them "TLStorm 2.0" – because there was already the TLStorm … Continue reading

Posted in devices, Security | Tagged , | Leave a comment

Beware: User reports TP-Link routers share traffic with third parties (Avira)

[German]Do any of you have TP-Link routers in use? There is disturbing information of the "hands off these devices" type. This is because there are user reports that TP-Link router firmware is sharing network traffic with third-party vendors (specifically AVIRA … Continue reading

Posted in devices, Security | Tagged , , , | 2 Comments

Advertising

Cisco drama: Critical vulnerabilities in small business routers (Feb. 2022)

[German]Customers of Network supplier Cisco and its customers are currently at risk. Cisco has published a security notice regarding its small business routers (SMB) on February 2, 2022, which is quite something. There are several security holes in their firmware, … Continue reading

Posted in devices, Security | Tagged , | Leave a comment

QNAP: DeadBolt attacks via vulnerability patched in December 2021

[German]The question why NAS manufacturer QNAP recently updated its devices via forced update has now been answered. The attacks by the DeadBolt ransomware that took place in January 2022 were only possible if the NAS owners made them accessible on … Continue reading

Posted in devices, Security, Software, Update | Tagged , , , | Leave a comment

Advertising

Amazon Alexa: 25% of buyers use it only one week …

[German]Did you also get such an Alexa part from Amazon as a Christmas present? I avoid this stuff like the devil avoids holy water for data protection reasons – and I don't see the point yet. But devices with the … Continue reading

Posted in devices | Tagged , | Leave a comment

Backdoor CVE-2021-40859 in Auerswald PBX systems (e.g. COMpact 5500R 7.8A & 8.0B) fixed

[German]Auerswald s a German manufacturer of telephone systems for corporate use. Security researchers have discovered backdoors in the firmware of Auerswald telephone systems (e.g. COMpact 5500R) that could be used to reset the administrator password. This was disclosed on 20.12.2021. … Continue reading

Posted in devices | Tagged , | 1 Comment

Vulnerabilities CVE-2021-3922, CVE-2021-3969 in ImController of Lenovo Notebooks

[German]Lenovo notebooks and devices that use the ImController service are vulnerable to a privilege escation vulnerability. This can allow attackers to execute commands with administrator privileges on the devices. However, there is an update to address both vulnerabilities. Advertising

Posted in devices, Security | Tagged , | Leave a comment

Advertising

Critical vulnerabilities in Honeywell Experion PKS and ACE controllers

[German]Critical vulnerabilities have been discovered in the Honeywell Experion PKS controllers C200, C200E, C300 and in the and ACE controllers. ICS-CERT and CISA have issued a warning about this – and the manufacturer Honeywell has issued security advice on what … Continue reading

Posted in devices, Security | Tagged , | Leave a comment

European Commission proposes a common charger for electronic devices

[German]The European Commission  has announced a legislative proposal by September 23, 2021 to tackle the problem of e-waste caused by different charging interfaces on electronic devices. The move seems necessary after the industry worked for years on a voluntary approach … Continue reading

Posted in devices | Tagged | Leave a comment