Tag Archives: Security

Chrome 80.0.3987.162 released (March 31, 2020)

[German]Google’s developers have released version 80.0.3987.162 of the Chrome browser (heise specifies 80.0.3987.163 here). This is a security update which should close three vulnerabilities. The new Chrome version 80.0.3987.122 is available for Windows, Mac and Linux and is rolled out … Continue reading

Posted in browser, Security, Software, Update | Tagged , , | Leave a comment

Advertising

Hackers infects thousands of MS SQL servers with backdoors

[German]Unknown hackers are running a campaign (running since May 2018) against Microsoft SQL-Server. The group succeeds in providing thousands of these SQL servers with a backdoor every day. There seems to be a whole botnet of infected SQL servers running … Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Mitigating Windows 0-day ADV200006 via GPO

[German]Small hint for administrators of large Windows environments in the Active Directory environment who need to plug the ADV200006 0-day vulnerability. Mitigation is possible using Group Policy. Advertising

Posted in Security, Windows | Tagged , | 1 Comment

Microsoft postpone the deactivation of TLS 1.0/1.1

[German]Microsoft has just announced to postpone the deactivation of TLS 1.0 and TLS 1.2 for its browser products (Microsoft Edge and Internet Explorer 11), originally planned for 1st half of 2020. Advertising

Posted in Security | Tagged , | Leave a comment

Zoom cuts data transfer to Facebook in iOS app

[German]he provider Zoom has just attracted attention because its iOS app for web and video conferencing transferred data to Facebook. As soon as it became known, the provider removed the corresponding framework from the app. Advertising

Posted in Security, Software | Tagged , , , | Leave a comment

Advertising

Update the Intune Exchange Connector to TLS 1.2

[German]Today a shot tip for administrators who use Microsoft Intune to manage their devices and want to migrate this solution to TLS 1.2 for handling SSL connections Advertising

Posted in Security, Software | Tagged , | Leave a comment

Bug in iOS version 13.4 may bypass VPN encryption

[German]A bug in the freshly released iOS 13.4 can prevent all traffic from VPN connections from being properly encrypted. VPN provider Proton has just disclosed this. Advertising

Posted in ios, issue, Security | Tagged , , , | Leave a comment

0patch fixes 0-day Adobe Type Library bug in Windows 7

[German]The team from ACROS Security have released a micropatch for Windows 7 SP1 (without ESU) for the 0-day vulnerability in the Adobe Type 1 Library that is included in all versions of Windows.  Advertising

Posted in Security, Windows | Tagged , , , , | Leave a comment
Advertising

Microsoft has revised ADV200006 (Type 1 Font Parsing RCE)

[German]Those days I had reported about a vulnerability in Windows in the blog post 0-day vulnerability in Windows Adobe Type Library. Just for your information: Microsoft is currently revising the description of ADV200006 – I received three notifications about updates … Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

0-day vulnerability in Windows Adobe Type Library

[German]An unpatched vulnerability exists in the Adobe Type Manager Library in all supported versions of Windows. Meanwhile hackers are trying to exploit this vulnerability, as Microsoft writes in a security advisory. Addendum: 0patch has released a micropatch. Advertising

Posted in Security | Tagged , | Leave a comment