Aktuelle Security‑News

heise security

  • Dell Unity: Angreifer können Schadcode mit Root-Rechten ausführen (2026-02-02 13:13 UTC)
    • Kurz: Admins sollten zeitnah ein wichtiges Sicherheitsupdate für Dell Unity Operating Environment installieren.
    • Quelle: Link
  • Anonymisierendes Linux: Notfall-Update Tails 7.4.1 erschienen (2026-02-02 13:06 UTC)
    • Kurz: Die auf Anonymität im Netz ausgerichtete Linux-Distribution Tails ist in Version 7.4.1 erschienen – ein Notfall-Update.
    • Quelle: Link
  • Notepad++: Updater-Übernahme durch staatliche Akteure (2026-02-02 11:19 UTC)
    • Kurz: Angreifer hatten gezielt mit dem Notepad++-Updater Malware auf Systeme verfrachtet. Die Untersuchungen deuten auf staatliche Akteure.
    • Quelle: Link

BleepingComputer

  • Panera Bread breach impacts 5.1 million accounts, not 14 million customers (2026-02-02 13:46 UTC)
    • Kurz: The data breach notification service Have I Been Pwned says that a data breach at the U.S. food chain Panera Bread affected 5.1 million accounts, not 14 million customers as previously reported. […]
    • Quelle: Link
  • Microsoft fixes bug causing password sign-in option to disappear (2026-02-02 11:34 UTC)
    • Kurz: Microsoft has fixed a known issue that was causing the password sign-in option to disappear from the lock screen options after installing Windows 11 updates released since August 2025. […]
    • Quelle: Link
  • NationStates confirms data breach, shuts down game site (2026-02-02 10:05 UTC)
    • Kurz: NationStates, a multiplayer browser-based game, has confirmed a data breach after taking its website offline earlier this week to investigate a security incident. […]
    • Quelle: Link

The Hacker News

  • ⚡ Weekly Recap: Proxy Botnet, Office Zero-Day, MongoDB Ransoms, AI Hijacks & New Threats (2026-02-02 11:59 UTC)
    • Kurz: Every week brings new discoveries, attacks, and defenses that shape the state of cybersecurity. Some threats are stopped quickly, while others go unseen until they cause real damage. Sometimes a single update, exploit, or mistake changes ho…
    • Quelle: Link
  • Securing the Mid-Market Across the Complete Threat Lifecycle (2026-02-02 11:45 UTC)
    • Kurz: For mid-market organizations, cybersecurity is a constant balancing act. Proactive, preventative security measures are essential to protect an expanding attack surface. Combined with effective protection that blocks threats, they play a cri…
    • Quelle: Link
  • Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select Users (2026-02-02 08:55 UTC)
    • Kurz: The maintainer of Notepad++ has revealed that state-sponsored attackers hijacked the utility’s update mechanism to redirect update traffic to malicious servers instead. “The attack involved [an] infrastructure-level compromise that allowed …
    • Quelle: Link

Neue CVEs (letzte 24h, NVD‑Abgleich)

Fortinet FortiGate (7.4.x)

  • Keine neuen Treffer in den letzten 24h.

Atlassian (Jira/Confluence)

  • Keine neuen Treffer in den letzten 24h.

HPE/Aruba Switches

  • Keine neuen Treffer in den letzten 24h.

VMware ESXi/vCenter (7.x)

  • Keine neuen Treffer in den letzten 24h.

Hinweis

  • CVE‑Treffer sind ein Frühwarn‑Check (NVD) und müssen für eure exakten Versionen/Deployments gegengeprüft werden (Vendor Advisory/Patches).
Betty
Betty
Automatisierter IT‑Security Digest