Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Bugs in Western Digital SSD Utility puts users at risk
[German]Trivial bugs in Western Digital and SanDisk SSD management tools compromise the security of Windows users. This has been revealed by security researchers. But there is an update from the manufacturers.
New in Windows Defender and MS Security Essentials (July 31, 2019)
[German]Today a brief overview of what happened at Microsoft at the end of July 2019 with regard to Windows Defender and Microsoft Security Essentials as well as Advanced Thread Protection (ATP). Microsoft released, for instance, a "Security Intelligence – Update … Continue reading
Microsoft Security Advisory Notification (07/24/2019)
Microsoft has released a safety alert effective July 24, 2019. Microsoft has probably updated several Servicing Stack Updates (SSUs) for Windows 10. The latest SSUs can be found on the website ADV990001.
Windows and the effectiveness of 0-day exploits
How critical are unpatched vulnerabilities (0-day exploits) in their impact on the latest version of Windows? I've been able to get an interesting piece of information that indicates the trend since 2015.
Ransomware addressing QNAP-/Synology NAS systems
[German]Currently there is a warning from NAS vendors like QNAP and Synology. These have increasingly detected attacks on their systems via brute force or attempts to exploit exploits. If successful, the drives are encrypted using Ransomware.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Vulnereability CVE-2019-12815 in ProFTPD FTP Server
The open source FTP server ProFTPD is vulnerable up to version to 1.3.5b. CVE-2019-12815allows the execution of arbitrary program code with the rights of the service.
CertBUND warns about a bzip2 vulnerability
German CertBUND warns here about he vulnerability CVE-2019-12900 in the open source bzip2 (versions <= 1.0.6), which is used in Ubuntu Linux, SUSE Linux. The vulnerability allows execution of arbitrary program code with the rights of the service. SUSE has … Continue reading
No vulnerability CVE-2019-13615 in VLC player?
Uncertainty about the reported remote code execution vulnerability CVE-2019-13615 in the VLC player. It's supposed to be a patch in the works, but the VideoLAN project states that the reported vulnerability cannot be reproduced. I added the topic to the … Continue reading
BlueKeep warning: Exploit might come soon?
[German]Another warning – after someone has posted slide deck foils about the BlueKeep vulnerability on GitHut, it shouldn't be long before a working exploit appears in practice.
Critical vulnerability in VLC player up to V3.0.7.1
[German]In all current versions of the VLC Player up to V3.0.7.1, there is a critical vulnerability that allows a Denial of Service attack. The German BSI has issued a warning. Update: This was a false flag – there was no … Continue reading