One of our valued Customers was so nice to send this in (Thank you very much!!)
User & Password clearly visible...
Sure thing, SRF does adhere to the highest standards in IT Security (NOT)
Sorry, but this is just in every way a bad example. If you have standard passwords... stick them somewhere where nobody can get them - especially when you know that there are tons of people with camer...
Read More
Bloombergs PR Coup / SuperMicros PR Desaster?!
Am 4. Oktober 2018 hat Bloomberg die Bombe [https://www.bloomberg.com/news/features/2018-10-04/the-big-hack-how-china-used-a-tiny-chip-to-infiltrate-america-s-top-companies] platzen lassen:
Man habe, so der Bericht, Quellen und Beweise dafür, dass Supermicro in seinen Servern einen Chip verbaut, (zu den vermeintlichen Gründen hierfür später in dem Artikel mehr), welche es Dritten ermöglicht, Date...
Read More
Meltdown & Spectre – STATUS
As most of you may be aware, Intel (and AMD) do have some nasty bugs design flaws inside their CPUs....
This Page tries to keep you updated on the current status.
Please bear with us if we're a bit late sometimes, but our first and utmost Priority currently is to keep our customers safe.
There is an Update-Section at the end of the page that will be kept up2date as timely as possible.
...
Read More
Cloud Security – Microsoft is doing it right. NOT!
Wie der Heise Security Ticker hier berichtet hat Microsoft mal wieder was verloren:
Dieses Mal: Das TLS-Zertifikat wie auch die privaten Schlüssel (Private Keys) ihres Dynamics-365-Dienstes.
Microsoft Dynamics ist ein ERP. Also nicht gerade eine harmlose Anwendung, welche einfach so im Netz rumfliegen sollte.
Die Daten, welche dort drauf liegen sind in den meisten Fällen als "Confidential...
Read More
Microsoft’s complete confession of Failure
During the presentation, 'How to migrate applications, data, and workloads to Microsoft Azure' the presenter had to switch from Microsoft Edge to Google Chrome in order to get the work done.
https://www.youtube.com/watch?v=q4rL_Lnt6kA&feature=youtu.be
Clearly, this hasn't been tested at all.
If "Microsoft" is the Answer, I don't want to know what the original question has been.
Read More
MacKeeper – He who lies once is not to be believed twice
We have been writing about Scareware (especially: MacKeeper) in the past. And no, it's not really news that MacKeeper has been forced to refund customers in the US because the software simply is not holding what it is promising.
Worse: We have seen several security leaks (or even entry doors) into MacKeeper in the past.
Every time this happened, Kromtech (the owner / developer of MacKeeper) ...
Read More
Ham and Eggs and Spam and Spam…
There have often been problems with "freemailers" in a way that many users actually only used those accounts as "SPAM-Accounts".
Security often was neglected by the owners (simple passwords) and the providers didn't care too much, too.
That seems to backfire now.
Looking through our spam-trap today, I discovered multiple mails like this one:
While the prices for the proposed "servi...
Read More
Gone hunting!
Here's the deal of the day:
You Want a new Parrot AR2 (Normal version, not the Elite... the old link is dead) Drone?
You're unwilling to spend lots of $$$ for it?
Well, here's your chance: Go hunting!
I'm really looking forward to the time Amazon is starting their delivery service - and the corresponding ThreadPost.
As a side node, this will be even more fun if you could time this together...
Read More
Features without a clue – why privacy matters
This article is a bit special because it is not directly linked to computer security in a way most people understand it.
Since more and more devices are connected to the internet I feel it's about time to write an article about something most of us use without too much caution.
And writing about a fridge gone berserk is not something I feel most people would listen up....
But now, some gu...
Read More
Hack the hacking Hacker
They know that we know that they know what they shouldn't know.
Basically, Malware is always a threat. There are two types of malware providers: Those who do it for money and those who do it for big money. In between are those, who want to do big money but are afraid to get caught by the police. Solution to this dilemma? Well, sell the software to the police as "security tool" to allow supervis...
Read More