Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Microsoft Security Advisory (December 12, 2017)
[German]As part of the December patchday (12/12/2017), Microsoft has also issued a Microsoft Security Advisory Notification. It addresses the security settings for Active Directory Domain Services. And it's discusses the DDE vulnerability when opening Office documents.
Posted in Office, Security, Windows
Tagged Active Directory, DDE, Microsoft, Office, Security
Leave a comment
TeamViewer: Vulnerability allows permission changes
[German]The TeamViewer software, commonly used to remotely control computers, has a security vulnerability. This allows attackers to hijack a session and attack the target computer. A patch is available.
Leak: oBike exposes user data to social media
[German]Chinese firm oBike offers bikes to rent in major cities around the world. A data leak provided personal data of customers (name, email, location data) freely accessible via social networks.
Hacker are misusing CVE-2017-11882 in Office EQNEDT32.EXE
[German]Microsoft Office is shipped with old equation editor EQNEDT32.EXE that contains a vulnerability. This vulnerability is used by hacker to distribute malware.
HP installs secretly HP Touchpoint Analytics Client telemetry client
[German]Here is an Information and Question addressing owners of HP Windows devices. It seems that Hewlett Packard silently installs a telemetry client on Windows computers. Here are a few details.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Security patches for Samba
[German]The free Samba software contains a 'use-after-free' vulnerability in all versions since Samba 4.0 (released in 2012). A 2nd 'heap memory information leak' vulnerability is present since Samba version 3.6.0. Bit Linux distros are offering patches.
Data breach: imgur has been hacked in 2014
[German]Image hoster imgur confirmed, that they has been hacked in 2014. The intruders has stolen email addresses and password for login.
MS Office Build-In-Feature: Can be used for replicating malware
[German]Microsoft Office Build-In features have a vulnerability that allows malware to spread. Microsoft doesn't see any vulnerability – but now a' qkG Ransomware' seems to have emerged that uses exactly this technique.
Vulnerability in AliExpress shopping portal
[German]The shopping portal AliExpress of the Chinese AliBaba Group has been hackable by a simple trick. Important customer credit card data could be accessed directly from criminals. The vulnerability has been fixed now.
Windows 8/8.1/10: Microsoft says ASLR flaw is a feature
[German]According to Microsoft, the partially not working ASLR memory protection in Windows 8, Windows 8.1 and Windows 10 is not a bug, but simply a feature that has been built in.