Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Security-Risk: Avoid 7-Zip
[German]Many users are knowing 7-Zip as a tool for unpacking archive files. The software is free of charge and is also available in a portable version for Windows. In addition, 7-Zip is also used in various products. Funny world? Unfortunately, … Continue reading
Windows 10: Zero character bug allowed Anti-Malware bypass
[German]Windows 10 had a bug, that allowed malware to trick Windows 10's Anti-Malware Scan Interface (AMSI) by including a null character. The character simply caused the code not to be scanned. The bug was fixed on February 2018 patchday.
Microsoft Security Update Releases (February 16, 2018)
Microsoft has released on February 16, 2018, revised security information about Advisory CVE-2018-0810 and CVE-2018-0831.
Microsoft delivers updates via HTTP & more security obscurity
[German]Microsoft currently fails to deliver updates in a secure way. In a Security by obscurity style, Microsoft offers update downloads via insecure http protocol. This also applies to downloads from the Microsoft Update Catalog. And Microsoft Update Catalog strikes, if … Continue reading
Microsoft Patchday Summary (February 13, 2018)
[German]Microsoft released a series of security updates for Windows and other products on February 13, 2018. Here is a brief overview of critical and non-critical security updates, a list of all 50 CVEs and details to an updated Microsoft Security … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Microsoft won’t fix Skype vulnerability in updater
[German]Skype has a vulnerability in the update process that allows an attacker to gain system-level access to the system. Microsoft won't fix this error.
Netgear router easily hackable – update your firmware
German Netgear routers has (again) several vulnerabilities in the firmware that can be used to overtake devices without a password. However, firmware updates are available to close the vulnerabilities.
LibreOffice Remote File Disclosure Vulnerability CVE-2018-6871
[German]In LibreOffice there is a Remote Arbitrary File Disclosure vulnerability (CVE-2018-68719), allowing attackers to send files to the Internet using prepared table documents. This Remote Arbitrary File Disclosure vulnerability has been closed in LibreOffice 5.4.5/6.0.1.
VPN vulnerability in Cisco ASA software used in the wild
[German]Cisco's ASA software has a critical bug in the VPN feature that is already exploited by hackers. There is a firmware update from Cisco which should be installed as soon as possible.
Fire Hazard: Recall of Lenovo ThinkPad X1 Carbon laptops
[German]Lenovo recalls certain models of its ThinkPad X1 Carbon notebook series due to fire hazard. However, only devices of the 5th generation that were manufactured between December 2016 and October 2017 are affected.