Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
FortiGuard Labs reports: Critical vulnerability CVE-2022-42475 in FortiOS is exploited
[German]FortiGuard Labs reported a critical vulnerability CVE-2022-42475 in FortiOS on December 12, 2022, which arguably allows remote code execution over SSL VPN. The bad thing is that this vulnerability is already being exploited in the wild. The vendor has since … Continue reading
PoC: Avast, AVG and Microsoft Defender tricked by "wiper tool" to delete files
[German]cecurity tools such as virus scanners claim to protect systems from threats. But malfunctions or vulnerabilities can unintentionally expose systems to particular risks. A security researcher recently demonstrated in a proof-of-concept (POC) that anti-malware solutions can be tricked into selectively … Continue reading
Google releases details of CVE-2022-41128 vulnerability in Internet Explorer, exploited by ScarCruft hackers
[German]Security researchers at Google Threat Analysis Group (TAG) have published details of a (then 0-Day) vulnerability in Internet Explorer's JavaScript engine that was discovered on October 31, 2022. This 0-Day was probably actively exploited by North Korean hackers to attack … Continue reading
Posted in browser, Security, Update, Windows
Tagged Internet Explorer, Patchday 11.2022, Security, Update, Windows
Leave a comment
Vulnerabilities in connected cars allow remote access at Honda, Nissan, Infiniti, Acura, etc.
[German]Modern vehicles are equipped with a lot of electronics and software so that they can access various functions as conveniently as possible. However, security researchers have identified serious weaknesses in vehicles from Honda, Nissan, Infiniti and Acura. In the U.S., … Continue reading
Ransomware attack responsible for Rackspace Exchange instance outage in Dec. 2022
[German]At the beginning of December 2022, there was an outage of the Exchange instances of the US provider Rackspace that lasted several days. Now the company has confirmed that a ransomware attack on its servers was the reason for this … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Details of the vulnerability in NETGEAR Nighthawk WiFi6 Router (RAX30 AX2400)
[German]Netgear has released a last-minute patch to close a vulnerability in the firmware of the Nighthawk WiFi6 router (RAX30 AX2400) on December 1, 2022. A misconfiguration allowed attackers in router firmware prior to version V1.0.9.90 to communicate with these devices … Continue reading
Vulnerability in Citrix Workspace App for Windows allows password theft
[German]Citrix is warning users since September 2022 about a vulnerability in its Citrx Workspace app. There are reports that Citrix SSON stored passwords in the process memory can be retrieved at the user level. Updates are provided in the December … Continue reading
LastPass customer data accessed after cloud storage service hack (Nov. 2022)
[German]LastPass informed its customers a few hours ago that "unusual activity" was recently detected in a third-party cloud storage service. This cloud storage service is currently used by both LastPass and its subsidiary GoTo. However, those who use the LastPass … Continue reading
Anchor Eufy Door Bell security cameras with vulnerabilities, data transferred to the cloud, Homebase 2 also has vulnerabilities
[German]Anker Eufy Door Bell security cameras are also sold in Germany. A security researcher has now found several security vulnerabilities in the firmware of the Eufy cameras. These transfer user images and facial recognition data to the cloud without the … Continue reading
Irish DPC fines Meta/Facebook €265 million after data privacy incident
[German]The Irish Data Protection Commission (DPC) has imposed a 265 million fine on Meta, Facebook's parent company. This follows a data protection incident in which millions of Facebook users' data was pulled from the company's systems via tools until September … Continue reading