Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Lace Tempest/Clop ransomware gang exploits MOVEit vulnerability CVE-2023-34362
[German]The SQL injection vulnerability CVE-2023-34362 in the Managed File Transfer (MFT) solution MOVEit has been known for a few days. This vulnerability has been exploited by attackers for some time and security authorities are now warning about the risks of … Continue reading
Windows: SMB Signing required soon (now available in Windows 11 Insider Preview)
[German]Microsoft will require the so-called SMB signing (through security signatures) in Windows 11 and later also in Windows 10. This is supposed to protect systems in enterprise environments against NTLM relay attacks. The feature in question is being rolled out … Continue reading
Warning: MOVEit vulnerability is abused in attacks, data extradicted
[German]Do any of you use the MOVEit Managed File Transfer (MFT) software? There is a vulnerability in the MOVEit Managed File Transfer (MFT) solution that allows privilege escalation and unauthorized access to the software's environment. The German Federal Office for … Continue reading
Firefox switches to Extended Support for Windows 7, 8, 8.1
[German]Mozilla's developers have just announced that the Firefox browser will move to the so-called Extended Support channel starting with version 115 for Windows 7, Windows 8 and Windows 8.1. Firefox 115 will be the last browser version that will still … Continue reading
Windows 10 21H2 reaches end of live – forced upgrade to 22H2
[German]Short reminder for Windows 10 users who are still running version 21H2. In June 2023, this Windows will receive security updates for the last time in certain variants and will then be removed from support. Microsoft has therefore started to … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Tesla files: data leak shows Tesla's problems with its Autopilot
[German]The German magazine Handelsblatt received 100 gigabytes of internal "Tesla files" by whistleblowers. The leak includes emails, personal data of the Tesla staff and customer complaints including descriptions of accidents. This data from around 23,000 files could be analyzed by … Continue reading
Critical security update (May 24, 2023) for all Zyxel firewall products – attacks in the wild
[German]The Taiwanese vendor Zyxel has released a very critical security update for all security products. The security warning states that several buffer overflow vulnerabilities (CVE-2023-33009, CVE-2023-33010) are affected. I have evidence that the vulnerabilities are already being exploited in Zyxel … Continue reading
Google deletes inactive accounts after 2 years
[German]Anyone who has a user account with Google should also use it. Otherwise its loss is imminent and there might be problems if data or email addresses etc. are connected to this account. This is what Google has announced the … Continue reading
Threat Hunting with PowerShell – Security even with a small budget
[German]IT security should not be a question of money – these are often pretextual excuses. MVP Tom Wechsler has put some thought into the topic and shows how you can even use PowerShell and a few lines of code to … Continue reading
Edge 113.0.1774.50
Microsoft has updated the Edge browser to version 113.0.1774.35 (security and bug fixes) on May 18, 2023 in the stable channel. According to the release notes, the vulnerabilities from the Chromium project are closed. According to deskmodder.de there is also … Continue reading