Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Linux: Backdoor in upstream xz/liblzma; compromise of SSH servers
[German]As of Friday, March 29, 2024, Red Hat has published a warning. The latest versions of the "xz" tools and libraries contain malicious code, a backdoor, which is apparently intended to allow unauthorized access. Affected by the backdoor (vulnerability CVE-2024-3094) … Continue reading
Microsoft Edge Bug CVE-2024-21388 allowed to install arbitrary extensions
[German]A now-patched vulnerability in the Microsoft Edge web browser could have been abused to install arbitrary extensions on users' systems and carry out malicious actions. This was revealed by a security researcher to The Hacker News.
Apple users target of "MFA bombing" attacks (2024)
[German]Users of Apple devices (iPhone, Apple Watch, Macs) are probably being targeted by a wave of attacks known as "MFA bombing". The aim of the attackers is to take over the victims' Apple accounts through a wave of password reset … Continue reading
Google Chrome 123.0.6312.86/.87
[German]Google has released an update of the Google Chrome browser (branch 123) in the stable channel on March 26, 2024, which closes seven vulnerabilities (some of them critical). The Extended Stable Channel and the app for Android have also received … Continue reading
Stop: Disable the scanning of documents by Adobe AI solutions!
[German]Adobe has begun to introduce its own AI solutions in its products. There is a risk that Adobe products will begin to scan all documents in companies in order to obtain data for feeding the AI solutions. Administrators should therefore … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Unsaflok: Millions of hotel doors can be opened with fake key cards
[German]Electronic locks from Saflock are used in many hotels and even in apartments. The doors secured in this way can be unlocked using RFID cards. Great thing? Unfortunately, security vulnerabilities mean that these electronic RFID locks can be picked using … Continue reading
Google Chrome real-time URL protection (Safe Browsing) against phishing & malicious sites
[German]Google is equipping its Chrome browser with enhanced protection within its "Safe Browsing" feature. This is intended to protect the user in real time from accessing malicious URLs and websites because the browser displays a clear warning. At the same … Continue reading
Edge 122.0.2365.92
[German]Microsoft has released another update of the Edge (Chromium) browser to version 122.0.2365.92 in the stable channel on March 14, 2024. It is a security and maintenance update that fixes bugs ("Fixed various bugs and performance issues.). Vulnerabilities have also … Continue reading
Update on Windows hardening in 2024/2025 – March 2024
[German]A quick note for administrators in corporate environments. Microsoft carries out so-called hardening measures for Windows (clients and servers) over longer periods of time. This involves hardening (securing) functions via Windows Update on certain key dates. Some of these hardening … Continue reading
Intel Product Security Center Notes (March 12, 2024)
Intel has published a series of new security advisories for processors etc. in the Intel Product Security Center as of March 12, 2024. Shawn Brink points out the relevant entries here.