Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Hackers send phishing emails via PayPal domains
[German]Brief message that I received from CheckPoint. Perhaps one or the other reader has an account with PayPal. Phishing is nothing new in this area – and criminals exploit the trustworthiness of the PayPal brand name to trick mail verification … Continue reading
Twitter data privacy incident (August 2022)
[German]Twitter has just confirmed a privacy incident stemming from a vulnerability reported in January 2022. In July 2022, it became known that someone had used this vulnerability to siphon personal data from Twitter users. Here's some information about that incident.
Some insights about the warning of German BSI against Kaspersky antivirus software
[German]I am once again taking up a difficult topic in a review, which has triggered numerous discussions within my Germanblog. It is about the German , BSI's (Federal Office for Information Security) warning against the use of products of the … Continue reading
Microsoft Edge 104.0.1293.47 (August 5, 2022) with security fixes
Microsoft has updated the Edge browser in the stable channel to version 104.0.1293.47 as of August 5, 2022. It is a security update that also includes a fix for vulnerabilities while also initiating the 104 development branch.
Lockbit attackers abuse Windows Defender to load Cobalt Strike
[German]Security researchers from Sentinel One have discovered an interesting attack path under Windows, which is used by the ransomware gang Lockbit. The group uses Windows Defender in its ransomware construction kit to load the Cobalt Strike test tool and then … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Remote access Trojan "Woody Rat" uses Follina exploits to attack Russian organizations
[German]Malwarebytes' threat intelligence team has identified a new, technically advanced remote access Trojan. Dubbed "Woody Rat," the Trojan has been in circulation for about a year and targets Russian organizations. Among others, Obyedinyonnaya Aviastroitelnaya Korporatsiya (OAK), an aerospace and defense … Continue reading
Critical RCE Vulnerability CVE-2022-32548 in DrayTek Vigor Routers
[German]Brief note for administrators and users who may be deploying Vigor routers in their environment. Security researchers have come across a critical Remote Code Execution vulnerability (RCE) that allows attackers to take over the router. DrayTek has provided a corresponding … Continue reading
Microsoft finds AiTM phishing campaign that also leverages 2FA
[German]A small follow-up on security for online accounts using two-factor authentication (2FA). Microsoft's security teams have encountered a large-scale AiTM phishing campaign that attempted to attack more than 10,000 organizations since September 2021. The campaign involved stealing passwords, hijacking the … Continue reading
Security & cyber attacks: Semikron, MBDA, Peter Berghaus GmbH and more
[German]The last few hours have seen another rash of cyber attacks on companies and government agencies. Semikron, a German manufacturer of power semiconductor components has fallen victim to a ransomware attack. Peter Berghaus GmbH, a manufacturer of traffic technology and … Continue reading
VMware: Security Adversory, Windows 11 TPM Issue
[German]Brief note for VMware users and administrators. The vendor has published a security advisory for various products (VMware Workspace ONE Access, etc.) as of August 2, 2022, because there are numerous vulnerabilities there. In addition, I still came across an … Continue reading