Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Suspected administrator of "Germany on the Deep Web" arrested
[German]The German Federal Criminal Police Office (BKA) has announced the arrest of a 22-year-old man who is suspected to have been the administrator and operator of the German platform on the Deep Web, which has been active since November 2018. … Continue reading
Avast Anti-Rootkit Driver Used in Ransomware Attack to Increase Authorization
[German]Ransomware groups continue to develop new tactics, techniques, and procedures (TTPs) to bypass protections during attacks. On the other hand, protections on endpoints and networks continue to evolve. The Microsoft Detection and Response Team (DART) published a case report the … Continue reading
Windows 0-day (Mark of the Web) used for ransomware attacks via JavaScript
[English]The days I had reported about an unfixed 0-day vulnerability, Mark of th e Web (MOTOW), in Windows for which there is an unofficial fix. Now a report has come to my attention that a 0-day vulnerability in this area … Continue reading
Facebook tracking pixel causes data leak at US health care system, 3 million patients affected
[German]A new case from a US healthcare platform showing how critical tracking pixels from social media platforms can be. Advocate Aurora Health, a large nonprofit operator of healthcare facilities in the Midwestern U.S., had to inform its patients that sensitive … Continue reading
WhatsApp, Signal, Threema: Timing attack reveals user location
[German]Security researchers have identified a vulnerability that undermines the location data of users of WhatsApp, Signal and Threema. In a blog post, the security researchers present the results of the research and offer potential solutions to mitigate the attack vector. … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Windows 7/8.1: Google ends support in February 2023, Edge also affected
[German]The support of the Chrome browser is to be discontinued for Windows 7 SP1 and Windows 8.1 from February 2023. The Google developers are reacting to the fact that ESU support for Windows 7 SP1 will end in January 2023. … Continue reading
Posted in browser, Security, Software, Windows
Tagged Chrome, Edge, Security, Windows 7, Windows 8.1
9 Comments
IT issues at wholesale retailer Metro group after cyber attack: Will shelves in Metro stores soon remain empty?
[German]How much does the cyber attack on the IT systems of the gastronomy wholesaler Metro affect store operations? Since last Monday, October 17, 2022, the Metro Group's IT infrastructure has been in serious troble, as far as its stores worldwide … Continue reading
Google removes malicious 16 apps with more than 20 million downloads
[German]Google has once again had to remove 16 Android apps from a Google Play Store. The reason: The apps contain a "clicker malware" that is designed to commit advertising fraud. Apparently useful apps (flashlight, QR code, photos/camera) that had been … Continue reading
VMware vulnerability CVE-2022-22954 threatened by ransomware, end of support for ESXi 6.5 & 6.7
[German]Various VMware products contain the critical vulnerability CVE-2022-22954 , for which a security update was provided back in April 2022. I had addressed the vulnerability in the blog post Warning: critical vulnerabilities in VMware products (April 6, 2022).
Outlook stores IMAP password DAPI-encrypted in the registry
[German]Another little hint on Sunday. Microsoft's developers store the passwords for accessing IMAP accounts for Outlook in the registry. Is indeed DAPI-encrypted, but can be decrypted in the system with an API call. This approach is also used by tools … Continue reading