Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Microsoft finds vulnerabilities in apps from major mobile providers (May 2022)
[German]The Microsoft 365 Defender Research Team has found some vulnerabilities in a mobile framework from mce Systems. The problem: This framework is used by some apps that mobile providers deliver preinstalled on their smartphones. Thus, millions of users were vulnerable … Continue reading
Vulnerabilities CVE-2022-27507 and CVE-2022-27508 in Citrix ADC and Citrix Gateway
[German]Two vulnerabilities CVE-2022-27507 and CVE-2022-27508 exist in Citrix ADC and Citrix Gateway, for which the vendor has issued a security bulletin. The vulnerabilities discovered in Citrix ADC and Citrix Gateway allow attackers to launch a distributed denial-of-service (DDoS) attack. The … Continue reading
Microsoft provides guidance on protecting against KrbRelayUp attacks in Windows domains
[German]KrbRelayUp attacks allow local privilege escalation in Windows domain environments where LDAP signing is not enforced. The default Active Directory settings are still insecure. However, Microsoft has now explained in a post how administrators can protect systems against KrbRelayUp attacks … Continue reading
Zyxel warns of vulnerabilities in firewalls, AP controllers and access points (May 24, 2022)
[German]Vendor Zyxel has published a security advisory warning of several vulnerabilities in firewalls, access points and access point controllers. Attackers can execute their own code via the vulnerabilities, block 2FA login and disrupt the devices. However, updates are available for … Continue reading
Chrome 102.0.5005.61/62/63 fixes critical vulnerabilities
[German]Google has released updates to the 102.0.5005.61/62/63 Google Chrome browser for Windows and Mac on the desktop in the Stable Channel as of May 24, 2022 (Chrome 102 is also included in the Stable Channel for Windows and Mac). Furthermore, … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Cisco patches vulnerability in IOS XR software
[German]Cisco has released last week a patch for a vulnerability in its IOS XR software. The vulnerability, CVE-2022-20821 (CVSS score: 6.5), allows an unauthenticated, remote attacker to connect to a Redis instance and achieve code execution. The vulnerability is already … Continue reading
Windows Defender Application Control: Recommended blocking rules (May 2022)
[German]In Windows 10 and Windows 11, Windows Defender Application Control (WDAC) and AppLocker are available as features in the enterprise variants (Windows 10/11 Enterprise) as security features (see this post). Now, Microsoft has published a list of recommended blocking rules … Continue reading
Conti ransomware gang stops activities – actors continue to operate
[German]A few hours ago, the Conti ransomware gang seems to have officially announced its resolutions and the cessation of all activities. The questions that remain: How long will this last? Will there be a sudden comeback? And do the actors … Continue reading
Thunderbird 91.9.1
[German]In addition to the Firefox developers providing a security update for the Firefox browser (see Firefox 100.0.2 and 91.9.1esr released), wo critical vulnerabilities in the Thunderbird email client have also been fixed with the May 20, 2022 update to version … Continue reading
Firefox 100.0.2 and 91.9.1esr released
[German]Mozilla developers have released versions 100.0.2 and 91.9.1esr of the Firefox browser on May 20, 2022. These are maintenance updates, which fix two critical vulnerabilities. Thanks to the reader for the tip.