Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Undocumented User in Zyxel Products (CVE-2020-29583)
[German]In many Zyxel products (firewalls) there is a vulnerability CVE-2020-29583 in the form of an undocumented user. The manufacturer has since released firmware updates to fix the vulnerability.
IT outage at cruise company AIDA due to a cyber attack?
[German]The cruise company Aida Crusies has canceled all New Year's Eve trips on its cruise ships. The reason are mysterious IT outages that lead to restrictions on board the cruise ships. The company is keeping a low profile, prosecutors are … Continue reading
German BKA and FBI warns of China espionage by GoldenSpy
[German]The German Federal Criminal Police Office (BKA) and the FBI has already published a warning about Chinese spyware activities against German and other foreign companies that maintain business relations in China.
Unprotected Azure blob exposes 500,000 confidential documents
[German]A British app developer made a big mistake by running a Microsoft Azure Blob unprotected in the cloud. As a result, over 500,000 confidential documents, some with medical data, could be accessed publicly and without any access control.
Fashion app leaks data from top European influencers
[German]The social e-commerce app 21 Buttons has just had a major privacy incident. Security researchers found a cloud storage used by the app that was publicly accessible and contained personal and financial data of 21 Buttons users.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Warning: DDoS attacks on Citrix NetScaler (ADC)
[German]A brief information for Citrix NetScaler administrators. Now also CERT-Bund warns about worldwide UDP:443 (EDT) accesses to Citrix Netscaler gateways. Citrix has published a workaround.
Windows 7 SP1/Server 2008/R2: Extended Support 2021 – Part 2
[German]In my blog post Windows 7 SP1: ESU Support for 2021 – Part 1 I had pointed out that from January 2021 a new ESU license is required to receive further security updates for this operating system. Those who do not … Continue reading
Posted in Security, Update, Windows
Tagged 0patch, ByPassESU, Security, Update, Windows 7, Windows Server 2008 R2
Leave a comment
0patch fixes CVE-2020-1013 in Windows 7/Server 2008 R2
[German]ACROS Security has released a micropatch for the CVE-2020-1013 (WSUS Spoofing, Local Privilege Escalation in Group Policies) vulnerability for Windows 7 and Server 2008 R2 (without ESU license). Here is some information about it.
Windows 7 SP1: ESU Support for 2021 – Part 1
[German]Small reminder for people still running systems with Windows 7 SP1. In January 2021 the support extension for the second year ends. So a little reminder today to renew the ESU license – and I've found a source that offers … Continue reading
Posted in Security, Update, Windows
Tagged ESU, Security, Update, Windows 7, Windows Server 2008R2
5 Comments
Exploit for not full patched Windows 0-day vulnerability CVE-2020-0986
[German]Security researchers have proven that a vulnerability patched in Windows in July 2020 is still exploitable. The patch does not close a vulnerability sufficiently, so there is another way to exploit it.