Tag Archives: Sicherheit

Windows, TPM, MEM, and Intune: Issues when changing the motherboard

[German]I'm posting a short piece of information here on the blog because this topic will probably affect more and more administrators of Windows 10/11 systems in the coming months and years. We are securing the systems more and more, among … Continue reading

Posted in issue, Windows | Tagged , , | Leave a comment

Advertising

Printjack: Security researchers warn against attacks on printers

[German]Printers are widespread, even if the paperless office is the goal. Printers are networked, but rarely protected against attacks. People don't think the devices are really worth protecting. But in times of IoT and under the General Data Protection Regulation … Continue reading

Posted in devices, Security | Tagged , | Leave a comment

WordPress Plugin Hide My WP with SQL Injection Vulnerability

[German]One of the most popular "security" plugins for WordPress, Hide My WP, has just attracted negative attention due to a fat SQL injection vulnerability. Another bug allows an attacker to simply disable the plugin Advertising

Posted in Security, Software | Tagged , | Leave a comment

Advertising

Critical vulnerabilities in Honeywell Experion PKS and ACE controllers

[German]Critical vulnerabilities have been discovered in the Honeywell Experion PKS controllers C200, C200E, C300 and in the and ACE controllers. ICS-CERT and CISA have issued a warning about this – and the manufacturer Honeywell has issued security advice on what … Continue reading

Posted in devices, Security | Tagged , | Leave a comment

Edge 93.0.961.44 closes CVE-2021-38669

[German]Microsoft has released a security advisory for the Edge browser as of September 9, 2021, updating the browser to version 93.0.961.44. The update also closed the CVE-2021-38669 vulnerability. Advertising

Posted in browser, Security, Software, Update | Tagged , , | Leave a comment

Advertising

PetitPotam attack allows Windows domain takeover

[German]There is a new attack vector called PetitPotam. This enables a threat actor to launch an NTLM relay attack on domain controllers. Ultimately, this can be used to take over entire domains. Since many organizations run domain controllers with Microsoft … Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

DevilsTongue spyware from Israeli company Candiru exploited Windows vulnerabilities

[German]After I just reported about spy Trojans of the Israeli NSO Group on smartphones (see Pegasus spy software of NSO Group on many smartphones), I can also reveal the second case. The Israeli company Candiru exploited vulnerabilities in Windows to … Continue reading

Posted in Security, Windows | Tagged , , | 1 Comment

Firefox 90.0.0 and 78.12.0 ESR released

[German]Mozilla developers have released version 90.0.0 and 78.12.0 ESR of the Firefox browser on July 13, 2021. The version 90.0.0 is a new development branch of the browser, and the ESR is a security update, which should eliminate vulnerabilities, but … Continue reading

Posted in browser, Security, Software, Update | Tagged , , | Leave a comment

Advertising

Microsoft Security Update Summary (June 8, 2021)

[German]On June 8, 2021, Microsoft released security updates for Windows clients and servers, for Office, etc. – as well as for other products – have been released. Below is a compact overview of these updates. Advertising

Posted in Office, Security, Software, Update, Windows | Tagged , , , | Leave a comment

Patchday: Windows 8.1/Server 2012-Updates (May 11, 2021)

[German]As of May 11, Microsoft has released various updates for Windows 8.1. These security updates are also available for Windows Server 2012 R2. Here is some information on the Monthly Rollup and Security only updates for these operating systems. Advertising

Posted in Security, Update, Windows | Tagged , , , , | Leave a comment