Tag Archives: Security

Remote security exploit in Intel Platforms

Posted on 2017-05-02 by guenni

[German]Intel platforms from Nehalem to Kaby Lake has a critical vulnerability. Attackers can remotely access an exploitable elevation of privilege security hole. While no consumer systems are affected, Intel and it's OEMs ships a firmware update.

Posted in computer, devices, Security | Tagged , , | 1 Comment

Security risk OEM bloatware Portrait Display (PdiService.exe)

Posted on 2017-04-26 by guenni

[German]A from OEM's (HP, PHILIPS, FUJITSU) on Windows notebooks preinstalled application bears a huge security risk. A vulnerability allows a local authenticated (non-privileged) attacker to run arbitrary code with SYSTEM privileges. Millions of devices are affected by this bloatware.

Posted in Security, Windows | Tagged , , , , , , | Leave a comment

Nvidia driver enables malware injection

Posted on 2017-04-23 by guenni

It's a nasty thing: Nvidia ships a Node.js server with its driver update function. But this Node.js server may be used to inject and execute malware on Windows systems.

Posted in Security, Update, Windows | Tagged , , | 1 Comment

TLS-INTERCEPTION: Sophos-Firewall blocks CAs in Google

Posted on 2017-04-22 by guenni

Users of Google Chrome browser are facing trouble visiting HTTPS websites, if a Sophos firewall is used. The browser shows certificate warnings and saying, the the communication isn't private.

Posted in Security, Windows | Tagged , , , , | Leave a comment

Word zero-day-vulnerability patched

Posted on 2017-04-12 by guenni

There has been a zero-day-vulnerability reported in Word and WordPad that is used in the wild. Microsoft has issued a patch to close this vulnerability on April 2017 patch day.

Posted in Office, Security, Windows | Tagged , , , , , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Windows 10: security updates April 11, 2017

Posted on 2017-04-12 by guenni

Microsoft has released at patchday (April 11, 2017) security updates KB4015583 (Windows 10 Version 1703), KB4015217 (Windows 10 Version 1607), KB4015219 (Windows 10 Version 1511) and KB4015221 (Windows 10 RTM). Here are a few details.

Posted in Security | Tagged , , , , , , | Leave a comment

Warning: Dridex botnet addresses Word zero day vulnerability

Posted on 2017-04-11 by guenni

User of Microsoft Word should be rather careful, because there is a zero day vulnerability within Microsoft Word. Now Dridex botnet sends millions of spam e-mails to users, containing malware attachments, addressing this Microsoft Word zero day exploit.

Posted in Office, Security | Tagged , , , , | Leave a comment

Windows IIS 6.0 Zero Day Vulnerability is under attacks since July 2016

Posted on 2017-03-30 by guenni

Windows comes with Internet Information Services (IIS). A zero day vulnerability has been used since July 2016 to attack and compromise IIS 6.0 and take over Windows servers.

Posted in Security, Windows | Tagged , , | Leave a comment

Security Update KB 3178690 crashes Excel 2010

Posted on 2017-03-23 by guenni

Microsoft has released Security update MS17-014 (Security Update for Microsoft Office (4013241)) on March 14, 2017. But it seems that this update is triggering crashes in Excel 2010.

Posted in issue, Office, Security, Update | Tagged , , , , | Leave a comment

DNSMessenger Trojan is using DNS queries for its orders

Posted on 2017-03-06 by guenni

[German]Security researchers has discovered a new file less malware that comes as a PowerShell script and uses DNS queries to receive its orders.

Posted in Security, Windows | Tagged , , , | Leave a comment