Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
HP Notebooks: Keylogger in Conexant’s audio driver
[German]It's a nasty surprise, what Thorsten Schröder, from Swiss modzero AG, discovered in Conexant's audio drivers shipped with some HP notebooks. The driver is logging all key strokes and writes it into a public log file – a security night … Continue reading
Posted in devices, Security, Windows
Tagged audio driver, Conexant, HP, key logger, Security, Windows
Leave a comment
Microsoft fixes critical Malware Protection Engine vulnerability
[German]Microsoft has acted quickly to a critical vulnerability in Windows, reported yesterday (see Windows has a critical wormable vulnerability). This night a security advisory has been released, patches will be available.
Windows has a critical wormable vulnerability
[German]It's a bit cryptic, what Google security experts Natalie Silvanovich and Tavis Ormandy from project Zero just revealed. They claim, they has discovered the 'worst Windows remote code exec in recent memory'. Update: Microsoft issued a fix for this vulnerability … Continue reading
New details to Intel’s AMT vulnerability
On Mai 1, 2017 Intel disclosed the AMT vulnerability (INTEL-SA-00075), without publishing details. Security Researcher from Tenable has analyzed this vulnerability.
Posted in computer, Security
Tagged AMT, Intel, ISM, Management Engine (ME), Security, Vulnerability
Leave a comment
Internet banking heist via SS7 UMTS vulneribility in Germany
[German]Cyber criminals has been successful in an Internet (online) banking heist, misusing a vulnerability known since 2014 within the signaling system #7 mobile.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Remote security exploit in Intel Platforms
[German]Intel platforms from Nehalem to Kaby Lake has a critical vulnerability. Attackers can remotely access an exploitable elevation of privilege security hole. While no consumer systems are affected, Intel and it's OEMs ships a firmware update.
Security risk OEM bloatware Portrait Display (PdiService.exe)
[German]A from OEM's (HP, PHILIPS, FUJITSU) on Windows notebooks preinstalled application bears a huge security risk. A vulnerability allows a local authenticated (non-privileged) attacker to run arbitrary code with SYSTEM privileges. Millions of devices are affected by this bloatware.
Posted in Security, Windows
Tagged Notebooks, OEM, PdiService.exe, Portrait Display, SDK, Security, Windows
Leave a comment
Nvidia driver enables malware injection
It's a nasty thing: Nvidia ships a Node.js server with its driver update function. But this Node.js server may be used to inject and execute malware on Windows systems.
TLS-INTERCEPTION: Sophos-Firewall blocks CAs in Google
Users of Google Chrome browser are facing trouble visiting HTTPS websites, if a Sophos firewall is used. The browser shows certificate warnings and saying, the the communication isn't private.
Word zero-day-vulnerability patched
There has been a zero-day-vulnerability reported in Word and WordPad that is used in the wild. Microsoft has issued a patch to close this vulnerability on April 2017 patch day.
Posted in Office, Security, Windows
Tagged Office, patch, Security, Update, Windows, Word zero-day-vulnerability
Leave a comment