Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Microsoft's warning: Teams users targeted by Russian attackers (Midnight Blizzard)
[German]Microsoft has just issued a warning to Teams users because they have encountered phishing campaigns targeting this clientele. Behind these phishing campaigns are Russian attackers that Microsoft names Midnight Blizzard (or NOBELIUM. APT29, UNC2452 and Cozy Bear). The group's goal … Continue reading
Microsoft as a Security Risk? Azure vulnerability unpatched since March 2023, heavy criticism from Tenable – Part 2
[German]Security vendor Tenable has made serious accusations against Microsoft. A critical vulnerability in Azure Active Directory (AAD, recently EntraID) has been known since March 2023, but has not yet been patched. The CEO of security vendor Tenable, Amit Yoran, sharply … Continue reading
Microsoft as a Security Risk? U.S. senator calls for Microsoft to be held accountable over Azure cloud hack- Part 1
[German]Is Microsoft and its handling of vulnerabilities in its products now the "top cyber risk"? The hack of Microsoft Azure services by the suspected Chinese group Storm-0558, made possible by a stolen private MSA key, seems to have been the … Continue reading
Vulnerability CVE-2023-35082 in Ivanti MobileIron Core (up to version 11.2)
[German]After already admitting to two vulnerabilities in July 2023 that were exploited in hacks, Ivanti has confirmed another vulnerability in MobileIron Core (Ivanti Endpoint Manager Mobile, EPMM). According to a new security advisory from Ivanti, there is another vulnerability CVE-2023-35082 in … Continue reading
Microsoft has published the TokenTheft playbook
[German]Small note to administrators who are responsible for or manage services and applications in the (Microsoft) cloud. The theft of tokens can enable attackers to access the corresponding services. As a result of a corresponding incident, Microsoft has therefore published … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Windows: Microsoft intends to disable TLS 1.0 and 1.1 soon by default in Schannel protocol
[German]Quick note for administrators in enterprise environments. Microsoft plans to soon deactivate TLS 1.0 and 1.1, which are still used by default in the Schannel protocol (starts in September 2023 with Windows 11 Insider builds). In a statement, the company … Continue reading
Used Canon printers reveal WLAN password
[English]Warning to owners of Canon printers who want to take them out of service and sell them – or who operate the devices in WLAN and then have to give them for repair. Manufacturer Canon currently warns that certain devices … Continue reading
Citrix ShareFile RCE vulnerability CVE-2023-24489 is under attack
[English]Security researchers warn that attackers are exploiting the Citrix ShareFile RCE vulnerability CVE-2023-24489 in the wild right now. Citrix ShareFile is a widely used cloud-based file sharing application that is affected by critical remote code execution (RCE) CVE-2023-24489 (CVSS score … Continue reading
Russian hacker infects himself through own infostealer
Nice side story: a hacker who operated in Russian-language forums since 2020 mistakenly infected his computer with malware he used, selling information to security researchers at Hudson Rock. So Hudson Rock staff was able to identify the hacker called La_Citrix … Continue reading
First supply chain attack on open source software targeting banks discovered
Security researchers say they have discovered the first attack on the open source software supply chain specifically targeting the banking sector. That's according to a report published by Checkmarx on July 21, 2023. On April 5 and 7, a threat … Continue reading