Sicherheitsinfos

Wichtige SicherheitsinformationenHier veröffentlichen wir Sicherheitsinfos und Updateinformationen für Sie.

Da wir täglich in den tiefen des WWW unterwegs sind, finden wir oftmals wichtige Informationen rund um das Thema Sicherheit und bieten Ihnen so die Möglichkeiten, gewissen Gefahren auszuweichen und/oder zu beseitigen.

Leider ist es im Computeralltag so, dass immer gewisse Kreise mehr Informationen über Sie erhalten wollen, als Sie preisgeben wollen. Wir hoffen, Ihnen dadurch bei der Sicherheit Ihrer Systeme behilflich zu sein.
threatpost.comOn Patch Tuesday, Microsoft fixed 66 CVEs, including an RCE bug in MSHTML under active attack as threat actors passed around guides for the drop-dead simple exploit....

threatpost.comSaryu Nayyar, CEO at Gurucul, peeks into Mitre's list of dangerous software bug types, highlighting that the oldies are still the goodies for attackers....

securitymagazine.comWalmart Inc. was at the center of a hoax aimed at manipulating the price of Litecoin. The incident illustrates how fake news and misinformation campaigns on social media are becoming a greater threat to businesses. ...

securitymagazine.comC-suite and other executives expect cyberattacks to increase over the next 12 months, yet only 33.3% say that their organizations have simulated ransomware attacks to prepare for such an incident, according to a recent Deloitte poll....

threatpost.comThe well-known banking trojan retools for stealth with a whole new attack routine, including using ads for Microsoft TeamViewer and Zoom to lure victims in....

securitymagazine.comOliver brings 11 years of experience from law enforcement roles to the position....

securitymagazine.comApple has released an emergency software patch to plug a security hole Citizen Lab researchers discovered affecting all its operating systems, exploited to infect the iPhone of a Saudi activist with NSO Group’s Pegasus spyware....

threatpost.comThe security vulnerabilities bring the web behemoth up to 10 browser zero-days found so far this year....

securitymagazine.comA new study shows that despite efforts to prevent corporate illicit activity, 84% of U.S. respondents still felt corruption had a significant impact on their organizations....

threatpost.comImperva's Elad Erez discusses findings that 46 percent of on-prem databases are sitting ducks, unpatched and vulnerable to attack, each with an average of 26 flaws....

TheHackersNewsUsers searching for TeamViewer remote desktop software on search engines like Google are being redirected to malicious links that drop ZLoader malware onto their systems while simultaneously embracing a stealthier infection chain that allows it to linger on infected devices and evade detection by security solutions. "The malware is downloaded from a Google advertisement published through Google...

Heise Sicherheits NewsAufgrund von kritischen Lücken in verschiedenen Matrix-Clients könnten Angreifer eigentlich verschlüsselte Nachrichten mitlesen....

TheHackersNewsA newly discovered side-channel attack demonstrated on modern processors can be weaponized to successfully overcome Site Isolation protections weaved into Google Chrome and Chromium browsers and leak sensitive data in a Spectre-style speculative execution attack. Dubbed "Spook.js" by academics from the University of Michigan, University of Adelaide, Georgia Institute of Technology, and Tel Aviv...

TheHackersNewsGoogle on Monday released security updates for Chrome web browser to address a total of 11 security issues, two of which it says are actively exploited zero-days in the wild. Tracked as CVE-2021-30632 and CVE-2021-30633, the vulnerabilities concern an out of bounds write in V8 JavaScript engine and a use after free flaw in Indexed DB API respectively, with the internet giant crediting anonymous...

TheHackersNewsResearchers on Monday took the wraps off a newly discovered Linux and Windows re-implementation of Cobalt Strike Beacon that's actively set its sights on government, telecommunications, information technology, and financial institutions in the wild. The as-yet undetected version of the penetration testing tool — codenamed "Vermilion Strike" — marks one of the rare Linux ports, which has been...

Heise Sicherheits NewsIn einem zweitägigen Online-Workshop zu KRITIS erwerben Auditoren Prüfungskompetenz. Für Kurzentschlossene sind noch Plätze frei....

threatpost.comA former Army Reservist pleaded guilty to scamming the elderly with catfishing and stealing from veterans....

threatpost.comThe incident that occurred Sept. 8 and affected its EMEA IT systems seems to signal a return to business as usual for ransomware groups....

Heise Sicherheits NewsDie Software Nitro PDF Pro war unter anderem mittels schädlicher PDF-Dateien angreifbar. Die neueste Version umfasst zwei wichtige Sicherheitslücken-Fixes....

TheHackersNewsCybersecurity researchers on Tuesday disclosed details about a high-severity flaw in the HP OMEN driver software that impacts millions of gaming computers worldwide, leaving them open to an array of attacks. Tracked as CVE-2021-3437 (CVSS score: 7.8), the vulnerabilities could allow threat actors to escalate privileges to kernel mode without requiring administrator permissions, allowing them to...

Weiter