Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Azure Confidential Computing with AMD VMs
[German]Microsoft has released an initial preview of Azure DCasv5/ECasv5 (confidential virtual machines with AMD SEV-SNP VM isolation) powered by third-generation AMD EPYC™ processors with SEV-SNP.
Cyber attack on IKEA's mail system, Trojan distributed?
[German]IKEA has experienced a cyber attack on its email system, the company said in an internal email alert to employees. Attackers are attempting a reply-chain email attack on IKEA employees' inboxes by replying to legitimate emails from the company but … Continue reading
0patch fixes LPE vulnerability (CVE-2021-24084) in Mobile Device Management Service
[German]There is an unpatched Local Privilege Escalation vulnerability (CVE-2021-24084) in Windows Mobile Device Management Service. The vulnerability has been known since 2020, but has not yet been patched by Microsoft. ACROS Security has therefore developed a free 0patch solution to … Continue reading
SentinelLabs finds three vulnerabilities in Oracle VirtualBox
[German]Security researchers from SentinelLabs have taken a closer look at Oracle's virtualization solution Virtualbox, which runs on Windows, macOS and Linux. They found three vulnerabilities in the virtualization tool. A vulnerability in Oracle VM VirtualBox allows program takeover and denial-of-service … Continue reading
Security vulnerabilities in iDRAC8/9 software put Dell servers at risk
[German]Multiple vulnerabilities existed in the iDRAC8 and iDRAC9 management software used on Dell servers. The vulnerabilities allowed remote attackers to control the execution of processes and gain access to the underlying operating system via a stack buffer overflow flaw. Dell … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Sophos XG – Mail delivery blocked by antivirus pattern (Nov. 25, 2021)
[German]Brief note to administrators who use Sophos XG as a firewall and security solution. On November 25, 2021, there was probably an update to the antivirus pattern that blocked at least one user from sending mail. The IT administrator in … Continue reading
RATDispenser: JavaScript-Loader dispenses Remote Access Trojaners (RAT) in Windows
[German]Another short addendum concerning security, which came to my attention the other day. Security researchers at HP Thread-Research have discovered a loader written in JavaScript that installs Remote Access Trojans (RATs) on Windows systems. The developer now appears to be … Continue reading
Windows attacks via 0-day in installer and vulnerability in MSHTML
[German]Attackers are exploiting a now-patched CVE-2021-40444 vulnerability in Microsoft's MSHTML routines to attack Windows systems. And the 0-day vulnerability in Windows Installer that I addressed here on the blog the other days is being exploited by malware for privilege escalation. … Continue reading
GoDaddy hack also affects hosting resellers
[German]A few days ago, the US registrar and hoster GoDaddy made public a major hack in which the attacker had access to 1.2 million customer records. My mind immediately went "is HostEurope as a subsidiary also affected". In the meantime, … Continue reading
Black Friday spam campaigns in the starting blocks
[German]November 26, 2021 is Black Friday – almost everything is free – and some people's brains are also out. This also attracts cyber criminals, who increasingly attack consumers with online shopping scams. The telemetry data from Bitdefender Labs also documents … Continue reading