Tag Archives: Security

Google Chrome get drive by download protection

Posted on 2019-01-28 by guenni

Google's Chrome browser will get a protection feature to block dangerous drive-by downloads. This should prevent the distribution of malware via this channel.

Posted in browser, Security | Tagged , | Leave a comment

AD and Exchange Server vulnerable via EWS API

Posted on 2019-01-26 by guenni

Another brief information for Exchange administrators. There is an unpatched vulnerability (CVE-2018-8581) on all Exchange Server versions that could be used by remote attackers to take over the machine.

Posted in Security, Software | Tagged , | Leave a comment

Android: ES File Explorer vulnerable

Posted on 2019-01-25 by guenni

Android file manager ES File Explorer has a vulnerability that put 100 Million Users' Data at Risk. A hidden web server runs always in background.

Posted in Android, Security | Tagged , | Leave a comment

Windows-Tool UserBenchMark – is it trustable?

Posted on 2019-01-24 by guenni

[German]Here's a blog post for people who love to use tons of tools onto their Windows systems. I have just become aware of the Windows tool UserBenchMark, that promises to create a benchmark of the system. I was asked if … Continue reading

Posted in Security, Software | Tagged , | 2 Comments

Micro Patch for Windows 0-Day file write vulnerability

Posted on 2019-01-23 by guenni

In Windows there is a Zero-Day-Exploit, which allows you to overwrite files without permission. 0patch provides a temporary micro-patch for this bug after Microsoft did not patch it in January 2019.

Posted in Security, Windows | Tagged , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Vulnerability in ThreadX WiFi firmware

Posted on 2019-01-22 by guenni

Within a very popular firmware (ThreadX) for WiFi chips, a vulnerability has been discovered that allows remote code execution. This exposes billions of devices to a security risk.

Posted in Security | Tagged | Leave a comment

Nearly 200 Extensions (Chrome, Firefox, Opera) vulnerable

Posted on 2019-01-21 by guenni

[German]Security researchers have found nearly 200 extensions for Google Chrome, Firefox or Opera that can be attacked by malicious websites. Maybe another opportunity to check, if you really need this stuff.

Posted in browser, Security | Tagged , | Leave a comment

Java 8 Update 201 released

Posted on 2019-01-18 by guenni

[German]Oracle released Java SE 8 update201 in January 2019 (quarterly patchday). This is a security update that closes vulnerabilities (see also Oracle Security Advisory January 2019).

Posted in Security, Software, Update | Tagged , , | Leave a comment

VLC Player 3.0.6 released

Posted on 2019-01-18 by guenni

[German]Another little addendum: A few days ago (on January 10, 2019) the developers of VideoLan released the VLC Player version 3.0.6 for Linux, macOS and Windows. This version closes a Denial of Service vulnerability of the previous versions.

Posted in Software, Update | Tagged , , | Leave a comment

Vulnerability in the Amadeus flight booking system (Jan. 2019)

Posted on 2019-01-16 by guenni

[German]Once again, security experts have come across serious vulnerability in airline flight booking systems. All airlines that use the Amadeus flight booking system have been affected (approx. 44% of the providers). A similar error as in 2016 seems to have … Continue reading

Posted in Security | Tagged | Leave a comment