Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Okta admits a mistake regarding disclosure in "Lapsus$ hack"
[German]This is the "best" image that the authentication service Okta is giving off right now. The Lapsus$ gang had claimed to have hacked Okta, which possible could have threatened hundreds of customers and made them victims of attacks. But it … Continue reading
Microsoft Security Update Revisions (March 25, 2022)
Microsoft has released several revisions for security updates on 25 March 2022. The revisions address changed vulnerability assessments. Here is an uncommented overview.
Fix for vulnerability CVE-2022-104 in Sophos Firewall (v18.5 MR3)
[German]A security researchers have found a vulnerability CVE-2022-104 (authentication bypass) in Sophos firewalls (v18.5 MR3 and older) that allows authentication bypass. Attackers could thus take over the firewall and execute malicious code remotely. However, Sophos has since released an update … Continue reading
"Browser in the browser" Phishing
[German]A security researcher has recently introduced a technique to make intercepting credentials via phishing even more efficient. He calls the technique BitB, short for "browser in the browser". A fake browser window is displayed within a real login page in … Continue reading
Anonymous has hacked Central Bank of Russia, 2nd hack of state-owned VGTRK media group?
[German]The hacker group Anonymous has claimed responsibility for a hack of the Central Bank of Russia in which a lot of data was captured. The group has now published 28 GB of this data. A second hacker group calling itself … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Kaspersky on US FCC list & banned from HackerOne's bug bounty
[German]Neue Entwicklung in Sachen Umgang mit dem aus Russland stammenden Sicherheitsunternehmen Kaspersky. Nachdem dessen Produkte bereits in US-Behörden nicht mehr eingesetzt werden durften, hat jetzt die US-Behörde FCC die Firma auf den Index gesetzt. Und bei der Plattform HackerOne ist … Continue reading
Chrome 99.0.4844.84 fixes 1 vulnerability
[German]Google has released updates to Google Chrome 99.0.4844.84 for Windows and Mac on the desktop as of 25 March 2022. The new version a security vulnerability that is rated high. In addition, there Chrome 98.0.4758.141 in the Extended Stable Channel … Continue reading
Warning: Upgrade to Google Chrome 99.0.4844.74 and above
[German]In mid-March 2022, Google developers updated the Chrome browser to version 99.0.4844.74, fixing 11 security vulnerabilities (see Chrome 99.0.4844.74 fixes 11 vulnerabilities). Microsoft Edge has also received a security update (Microsoft Edge 99.0.1150.46 released). Now German Cyber Security agency BSI … Continue reading
7 teenagers arrested in connection with the LAPSUS$ hacks
[German]A few hours ago, I reported in the article Lapsus$ hacker group debunked? Teenager from Britain and Brazil suspected? that security researchers believe they have uncovered the mastermind of the LAPSUS$ gang. It has now been revealed that British police … Continue reading
Lapsus$ hacker group debunked? Teenager from Britain and Brazil suspected
[German]The Lapsus$ group has been causing a furore with spectacular hacks since the beginning of 2022. Nvidia, Samsung, Microsoft, Okta are names of companies that come up in this context as victims. Security researchers believe they have unmasked members of … Continue reading