Ad Hoc News: Warnung vor „BlueBleed“-Datenleck bei Microsoft

Fehlkonfigurierter Microsoft Endpoint-Server über das Internet öffentlich zugänglich In einem Blogbeitrag hat Microsoft am 19.10.2022 bestätigt, dass sensible Kundendaten offengelegt wurden: Investigation Regarding Misconfigured Microsoft Storage Location. Grund war ein fehlkonfigurierter, über das Internet öffentlich zugänglicher Microsoft Endpoint-Server. Insgesamt ist davon auszugehen, dass sensible Daten von ca. 65.000 Unternehmen in 111 Ländern öffentlich zugängig waren. Der Sicherheitsanbieter SOCRadar […]

Where Are All of the Container Breaches?

Containers and their supporting infrastructure are too important to ignore. November 01, 2022 How will threat actors attack and utilize containers? This is a question I constantly think about. I’ve been working in this area for more than two decades now, and I feel like I should have an answer. But I don’t. Instead, I […]

Cyber-attacks on small firms: The US economy’s ‚Achilles heel‘?

When Elana Graham started selling cyber-security software to small companies five years ago, business was relatively slow. Now demand is booming, driven by a rapid expansion in remote work that has left small firms vulnerable to attack. Business at her firm has tripled since the start of the year, she says, reaching an all-time high. […]

Cyberangriffe auf den Handel steigen an – Online-Betrug und Datenverlust

5. November, 2022 11:28 Der Handel ist Ziel einer wachsenden Zahl an Cyberangriffen, die gerade angesichts großer Shopping-Events wie dem Black Friday und dem Weihnachtsgeschäft ein erhebliches Risiko für die Branche darstellen. Das zeigt der Bericht „The State of Security Within eCommerce 2022“ von Imperva, ein Unternehmen im Bereich der digitalen Sicherheit. Die Zwölf-Monatsanalyse von Imperva […]

Cyberattack Causes Trains to Stop in Denmark

Trains stopped in Denmark on Saturday as a result of a cyberattack. The incident shows how an attack on a third-party IT service provider could result in significant disruption in the physical world. According to Danish broadcaster DR, all trains operated by DSB, the largest train operating company in the country, came to a standstill on […]

FCC commissioner calls for TikTok ban

WashingtonCNN Business —  The US government should ban TikTok rather than come to a national security agreement with the social media app that might allow it to continue operating in the United States, according to Brendan Carr, a commissioner at the Federal Communications Commission. A string of news reports this year about TikTok’s handling of US […]

Hackers take down one of the world’s largest telescopes

The ALMA observatory in Chile has been forced to get some shut-eye after hackers targeted its computer systems. One of the world’s largest and most advanced telescopes has had to suspend operations following a cyberattack. The Atacama Large Millimeter/submillimeter Array (ALMA), based in the Atacama Desert of northern Chile, said that a cyberattack targeting its […]

Raytheon Technologies partners with Microsoft to accelerate cloud adoption

Raytheon Technologies is deepening its collaboration with Microsoft to equip the aerospace and defense company’s employees with cloud-based tools, technologies, and platforms to enhance collaboration, optimize operations and unlock insights that drive greater value for customers. The effort includes co-development of capabilities, as well as Raytheon Technologies’ use of existing or modified versions of Microsoft solutions such as Microsoft […]

Android leaks some traffic even when ‚Always-on VPN‘ is enabled

Mullvad VPN has discovered that Android leaks traffic every time the device connects to a WiFi network, even if the „Block connections without VPN,“ or „Always-on VPN,“ features is enabled. The data being leaked outside VPN tunnels includes source IP addresses, DNS lookups, HTTPS traffic, and likely also NTP traffic. This behavior is built into the […]

Zugriff auf Daten und Systeme durch Ex-Mitarbeiter

Ehemalige Mitarbeiter können ein zusätzliches IT-Sicherheitsrisiko für den Mittelstand in Deutschland darstellen, wie der aktuelle Kaspersky SMB  Cyber Resilience Report zeigt. Denn nur 41 Prozent aller befragten Unternehmensverantwortlichen können ausschließen, dass ehemalige Mitarbeiter noch Zugriff auf in der Cloud gespeicherte Unternehmensdaten haben, und nur 46 Prozent sind sich sicher, dass Ex-Mitarbeiter die Accounts im Unternehmen auch wirklich […]