- rwth-security - lists.rwth-aachen.de

Thousands of Organizations Vulnerable to Subdomain Hijacking

von Bernd Kohler

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Thousands of Organizations Vulnerable to Subdomain Hijacking" --> siehe dazu auch [1] --> Im Anhang befindet sich ein Skript mit dem ihr über den DNS-Admin bzw. dessen API nach verwaisten records suchen könnt. VG Bernd [0] https://certitude.consulting/blog/en/subdomain-hijacking/ [1] https://www.golem.de/news/auch-in-deutschland-webseiten-vieler-bekannter-or… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

10 Monate, 1 Woche

1
0
0 0

What is Secure? An Analysis of Popular Messaging Apps

von Bernd Kohler

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "What is Secure? An Analysis of Popular Messaging Apps" VG Bernd [0] https://techpolicy.press/what-is-secure-an-analysis-of-popular-messaging-ap… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

10 Monate, 1 Woche

1
0
0 0

Bypassing Bitlocker using a cheap logic analyzer on a Lenovo laptop

von Bernd Kohler

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Bypassing Bitlocker using a cheap logic analyzer on a Lenovo laptop" --> ... The use of a discrete (physical) TPM actually decreases the security of the system, using a fTPM would solve the problem. If the discrete TPM has to be used, then a PIN or passphrase on BitLocker is necessary. ..." VG Bernd [0] https://www.errno.fr/BypassingBitlocker.html -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

10 Monate, 2 Wochen

1
0
0 0

New stealthy techniques let hackers gain Windows SYSTEM privileges

von Bernd Kohler

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "New stealthy techniques let hackers gain Windows SYSTEM privileges" VG Bernd [0] https://www.bleepingcomputer.com/news/security/new-stealthy-techniques-let-… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

10 Monate, 2 Wochen

1
0
0 0

Harden Windows Security GitHub Wiki content

von Bernd Kohler

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Harden Windows Security GitHub Wiki content" VG Bernd [0] https://github.com/HotCakeX/Harden-Windows-Security/wiki/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

10 Monate, 2 Wochen

1
0
0 0

Announcing Python in Excel: Combining the power of Python and the

von Bernd Kohler

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Announcing Python in Excel: Combining the power of Python and the flexibility of Excel." --> interresant in diesem Zusammenhang ist [1] Microsoft Excel Python has the following registry key setting values HKCU\software\policies\microsoft\office\16.0\excel\security\PythonFunctionWarnings DWORD 0 = All Security Warnings Disabled 1 = Security Warning: Enable-Content 2 = Blocks all Python Execution VG Bernd [0] https://techcommunity.microsoft.com/t5/excel-blog/announcing-python-in-exce… [1] https://twitter.com/Laughing_Mantis/status/1694058572051853519 -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

10 Monate, 2 Wochen

2
1
0 0

CVE-2023-38408: Remote Code Execution in OpenSSH’s forwarded ssh-agent

von Bernd Kohler

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Remote Code Execution in OpenSSH’s forwarded ssh-agent" Status bei - Debian [1] - Red Hat [2] - Ubuntu [3] VG Bernd [0] https://blog.qualys.com/vulnerabilities-threat-research/2023/07/19/cve-2023… [1] https://security-tracker.debian.org/tracker/CVE-2023-38408 [2] https://access.redhat.com/security/cve/cve-2023-38408 [3] https://ubuntu.com/security/CVE-2023-38408 -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/c/ITCenterRWTHAachen

10 Monate, 2 Wochen

1
0
0 0

Network Security Dashboard for Microsoft Defender for Cloud

von Bernd Kohler

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Network Security Dashboard for Microsoft Defender for Cloud" VG Bernd [0] https://github.com/Azure/Microsoft-Defender-for-Cloud/tree/main/Workbooks/N… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

10 Monate, 3 Wochen

1
0
0 0

Downfall Attacks (CVE-2022-40982) - steal sensitive information like

von Bernd Kohler

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Downfall Attacks" --> "... steal sensitive information like passwords, encryption keys, and private data such as banking details, personal emails, and messages --> siehe dazu auch [1] "New Downfall attacks on Intel CPUs steal encryption keys, data" VG Bernd [0] https://downfall.page/ [1] https://www.bleepingcomputer.com/news/security/new-downfall-attacks-on-inte… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

10 Monate, 4 Wochen

1
0
0 0

Exploring Credential Management Strategies and Obstacles during

von Bernd Kohler

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Would You Give the Same Priority to the Bank and a Game? I Do Not!" Exploring Credential Management Strategies and Obstacles during Password Manager Setup VG Bernd [0] https://teamusec.de/pdf/conf-soups-amft23.pdf -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de https://www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://twitter.com/ITCenterRWTH https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

11 Monate

1
0
0 0

2024

2023

2022

2021

2020

2019

2018

rwth-security