Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Intel NUC BIOS vulnerability CVE-2018-12176
There is a vulnerability (CVE-2018-12176) in the BIOS of various Intel NUCs, which can be used to manipulate the devices. Intel has published a Security Advisory.
Vulnerability in Logitech Options; an update is required
[German]If you use the software 'Logitech Options' in Windows, you should update to version 7.00.564. The reason: older versions have a serious security vulnerability.
Vulnerabilities in Microsoft accounts allowed takeover
[German]There were several vulnerabilities at Microsoft that, when combined, allowed an attacker to hijack any Microsoft Outlook, Microsoft Store or Microsoft Sway account. It was enough for the victim to click on a link. The vulnerabilities potentially affected 400 million … Continue reading
DNS vulnerability: Patch your Windows Domain Controller
[German]Administrators in enterprise environment should update Windows Server urgently, as a vulnerability has been found in the DNS system that has existed since at least 2012.
Patchday Microsoft Office Updates (December 11, 2018)
[German]As of December 11, 2018 (second Tuesday of the month, Patchday at Microsoft), Microsoft has released several security updates for supported Microsoft Office versions and products such as Sharepoint.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Microsoft Security Update Summary (December 11, 2018)
[German]As of December 11, 2018, Microsoft released several security updates for Windows clients and servers, Office, etc. Below is a compact overview of these updates and some notes.
Google+: Shutdown for consumer in April 2019
After Google had to admit a second security incident with its social network Google+, the management decide to shutdown Google+ for private users in April 2019 (not August 2019). Google+ will be available only internally for Google employees – as … Continue reading
Kubernetes vulnerability CVE-2018-1002105: Proof of concept
There is a major vulnerability in Kubernetes (CVE-2018-1002105) that can be used by attackers to upgrade to cluster admin. Then it is possible to infiltrate malicious code into docker instances. Now a Proof of Concept has appeared – so patching … Continue reading
Emotet ransomware infection hits German Kraus-Maffei
[German]Kraus-Maffei, a chinese owned German manufacturer, fell victim to the blackmail Trojan Emotet, which paralyzed numerous computers in the company. After the district hospital Fürstenfeldbruck this is another victim, whose case became publicly known.
Harden Windows networks with AD option against NotPetya
[German]How to harden a network environment against the worm components of ransomware like NotPetya? A simple Active Directory settings may help with this approach.