Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
VirtualBox: Exploit for 0-day vulnerability
Bad news messages for users of the Oracle virtualization solution Virtualbox up to version 5.2.20. There is a 0-day vulnerability in the E1000 network component. Unfortunately, an exploit for this vulnerability has also become public. So if you use Virtualbox, … Continue reading
Bitlocker on SSDs: Microsoft Security Advisory Notification (Nov. 6, 2018)
[German]Microsoft has released a new Security Advisory on November 6, 2018 with hints for hardware and software encryption on Bitlocker SSD drives. Fits to a topic that I mentioned a few hours ago in a separate blog post.
SSD vulnerability breaks (Bitlocker) encryption
[German]Security researchers have found vulnerabilities in popular SSD drives. These make it possible to bypass an data encryption and read the encrypted data without the encryption key. Windows and its Bitlocker encryption are particularly affected. But there are solutions to … Continue reading
Microsoft Security Update Releases Nov. 1, 2018
Just a brief note: As of November 1, 2018, Microsoft has released some revision for CVEs for Microsoft Office 2016 for Mac.
Security: Vulnerability in Lexmark All-in-one devices
[German]Lexmark has discovered a vulnerability in it's All-in-one devices within the color fax function. Lexmark published a security advisory about this vulneratbility. Currently it's unclear, if Lexmark provides firmware updates do mitigate the vulnerability within his devices.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Risk: Embedded videos in Word documents?
[German]Security experts warn of risks in Word documents. Embedded videos can be misused for attacks. The XML format of .docx files can be misused to download dubious JavaScript code.
Bing/Edge directed Chrome-Fans to Phishing sites
[German]A worrying thing that may have happened in the USA. Users looking for a Google Chrome download in Microsoft Edge on Windows 10 were occasionally redirected to a page offering unwanted software (PUP).
Linux: Vulnerability CVE-2018-15688 in Systemd
[German]A vulnerability in the systemd component of some Linux distributions can be exploited over the network. A single DHCPv6 package is enough to provoke a crash or more.
Surface Pro 3: Vulnerability in TPM chip–update required!
[German]Microsoft have been used TPM chips from Infineon in Surface Pro 3. These chips probably contain vulnerabilities in some versions. Affected owners of a Surface Pro 3 should therefore install an TPM update.
Windows Defender in a sandbox
Microsoft has added an additional security feature to the Windows Defender included in Windows 10. Defender can be run in a protected sandbox environment from Windows 10 V1703 onwards.