First radio post: Fake vaccination cards
On 02.11.2021 I was allowed to give a short contribution with the German wave to the topic of the falsified vaccination cards. Due to the fact that the topic took place very extensively in the Eastern European region, only the Russian-speaking section of the station dealt with the topic. So do not be surprised that […]
Vulnerability Worldline HIDCCEMonitorSVC
An unquoted service path in the HIDCCEMonitorSVC software allows a local attacker to potentially escalate privileges to the system level.
Top Security QuickFails: #5 Attack of the CloneAdmins aka Missing LAPS
#5 Attack of the CloneAdmins aka Missing LAPS The attack At FaulerHund AG in Munich, the employees are starting a new business year and are looking forward to new challenges. So also the administrator Karl KannNixDafür, who noticed on Thursday noon around 12:30 that the account of Ute Unbeschwert is still logged in, although she […]
Top Security QuickFails: #4 No SPF
Half past six in the morning in Germany. Bianca at MedienBude GmbH starts her workday by checking her e-mail inbox.
There you will find an urgent email from your boss asking you to check the last statement.
Top Security QuickFails: #3 The “invisible” network shares
#3 The “invisible” network shares The attack It’s Wednesday morning, the sun is shining and all ImmerGrün AG employees are looking forward to the summer party in the afternoon.Beate from the HR department wanted to have a look at some applications from the previous day and was surprised that many documents suddenly required macros to […]
Vulnerability in DATEV
An insufficient configuration of the service allows an extension of the rights on the system level.
Vulnerability in Sophos Suite
An insufficient configuration of the service allows an extension of the rights on the system level.
Top Security QuickFails: #2 Domain Admins Everywhere
#2 Domain admins everywhere The attack It is a Monday morning and Kevin Vielzutun starts his monthly server check in the network, because he is one of 3 administrators of Fahrlässig GmbH with about 100 employees. To save time and thus work more efficiently, Kevin performs these checks as usual with his Domain Admin account, […]
Top Security QuickFails: #1 Office Macros
#1 Standard Office Macros Settings The attack Our employee of the month Peter Lustig receives an e-mail from his supplier SuperSchnell GmbH, who has attached a corrected order in an Excel sheet. Of course, the Excel sheet was protected with a password, because the data protection regulation strictly prohibits anything […]
Top Security QuickFails
The prehistory In recent years, we have conducted an extremely large number of penetration tests at companies of all sizes and in all industries (from small law firms with 3 employees, to power plants, to banks and insurance companies with several thousand employees). This blog series highlights a selection of attack vectors, at least one […]
