Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Microsoft does not want to block macros in Office by default after all
[German]Macros in Office are a gateway for malware like Dridex, Emotet, Trickbot, Qbot, etc. Microsoft had plans to disable macros in Office 365 by default. Now this idea seems to have been scrapped again, macros will not be blocked by … Continue reading
Ransomware group ALPHV (Blackcat) with new extortion techniques (searchable database)
[German]The ransomware group ALPHV (also known as Blackcat) seems to be breaking new ground in extortion techniques. In the past, victims have already been threatened with the publication of captured data in order to get them to pay a ransom. … Continue reading
Microsoft Edge 103.0.1264.49 (July 6, 2022)
[German]Microsoft has updated the Edge browser in the stable channel to version 103.0.1264.49 as of July 6, 2022. It is a maintenance update that fixes the CVE-2022-2294 vulnerability. The download bug hasn't been fixed.
Cisco Security Advisories (July 6, 2022)
[German]Cisco has published extensive security warnings for various products as of July 6, 2022. Of a total of new CVEs, one in Cisco Expressway and Telepresence Vdieo communication servers is rated critical, one vulnerability in Smart Software Manager is rated … Continue reading
OpenSSL 3.0.4 Vulnerability CVE-2022-2274: Heap Memory Corruption with RSA Private Key Operation
[German]A vulnerability CVE-2022-2274 exists in OpenSSL that could lead to heap memory corruption with RSA private key operations. It affects OpenSSL 3.0.4 and the vulnerability is rated High in severity. A second vulnerability CVE-2022-2097 causes AES OCB to fail to … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
AstraLocker terminates activities and releases Decryptor
[German]Strange things are happening at the moment. The threat actor behind the lesser-known AstraLocker ransomware seems to want to stop its activities. The actor plans to switch to cryptojacking and has published an archive of AstraLocker decryption programs. I'll try … Continue reading
Hacker sells 1 billion personal data from Shanghai police data base for 10 bitcoins
[German]US media report that a hacker is currently trying to sell a 23 terabyte data set for the price of 10 bitcoins (around 195,000 euros). The dataset is said to contain 1 billion personal data of the population from a … Continue reading
AstraLocker 2.0: Infection via Word attachment
[German]Security researchers from ReversingLabs have tracked down a relatively unknown malware, which they have named AstraLocker. In version 2.0, the attackers have taken to loading the malicious payload directly from a Word document that is included as an attachment to … Continue reading
Security for Kubernetes: Pitfalls and Solutions
The use of virtualized containers with functions is in vogue. Orchestration solutions, such as Kubernetes, are used to manage the containers. However, if this solution is compromised, this affects all managed containers. The question therefore arises about the security of … Continue reading
Lookout explains: Security Service Edge (SSE) and the future of cloud security
[German]Recently I came across a piece of information from security vendor Lookout about the future of cloud security and the term SSE. Sundaram Lakshmanan, CTO of SASE Products at Lookout, explains what SSE is. And he describes the three core … Continue reading