Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Software
Tavis Ormandy ported Lotus 1-2-3 and WordPerfect to Linux
Developer Tavis Ormandy, who works on Project Zero for Google, has ported the Unix versions of Lotus 1-2-3 and WordPerfect to Linux as a finger exercise. The Lotus port had already become known in May 2022. Then in July 2022, … Continue reading
TeamViewer: Fingerprinting via installed font
[German]Users who use TeamViewer as remote maintenance software and install the software under the Windows operating system can be tracked on the web via fingerprinting. The reason is a font installed by the software, as Tarnkappe reports. Norwegian software developer … Continue reading
Confluence Security Advisory 2022-07-20
[German]Confluence released Security Advisory 2022-07-20 on July 20, and updated it today. The security advisory addresses Confluence accounts with hardcoded credentials created by Questions for Confluence. This affects the Confluence app for Confluence Server and Confluence Data Center.
Sandboxie fork with version 1.0.22 Final – new features in the Plus version
[German]David Xanatos informed me back in June 2022 that he had completed an update for Sandboxie in version v1.0.22 / 5.55.22 and released it on Githib. Thus, this version is so "really final", as he put it. There is also … Continue reading
PowerToys 0.60 released
[German]Microsoft has released version 0.6 of its free PowerToys for Windows 10 and Windows 11 on July 7, 2022. I haven't reported about these tools and the weekly water levels here on the blog for a while, especially since the … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Unauthorized RCE CVE-2022-28219 in Zoho ManageEngine ADAudit Plus
[German]Security researcher Naveen Sunkavally of Horizon3.ai recently discovered vulnerability CVE-2022-28219. This allows remote code execution without further authentication by the attacker and affects Zoho ManageEngine ADAudit Plus. This is a compliance tool used by enterprises to monitor changes to Active … Continue reading
Azure: Container Escape Vulnerability (CVE-2022-30137) in Microsoft's Service Fabric Closed
[German]Security researchers from Palo Alto Networks have encountered a container escape vulnerability in Microsoft's Service Fabric, which they then named FabricScape. The vulnerability allowed container escapes in Microsoft's Service Fabric, which is commonly used with Azure. Palo Alto Networks has … Continue reading
CISA warning about Log4Shell attacks on VMware Horizon systems (June 2022)
[German]U.S. Cybersecurity & Infrastructure Agency (CISA) issued a strong warning as of June 24, 2022, that the Log4Shell vulnerability disclosed in December 2021 is being targeted by groups to attack unpatched VMware Horizon systems. In one confirmed case of compromise, … Continue reading
Potentially more than 770 million Travis CI API logs compromised
[German]Travis CI is a very popular service among software developers, which is used to create and test many software projects. The service is part of the software supply chain of many software solutions. Moreover, Travis CI's credentials and login information … Continue reading
Adobe Acrobat (Reader) DC 22.001.20142
Adobe has released an update to Adobe Acrobat (Reader) DC to version 22.001.20142 (Windows) and (Mac) as of June 14. This update fixes some bugs according to this description. Download links are provided on the relevant Release Notes page for … Continue reading