Digest

IT‑Sicherheits‑Digest (2026-02-03) Aktuelle Security‑News heise security Sicherheitsupdate: Unbefugte Zugriffe auf WatchGuard Firebox vorstellbar (2026-02-03 08:43 UTC) Kurz: Angreifer können auf Firebox-Firewalls von WatchGuard zugreifen. Reparierte Fireware-OS-Version stehen zum Download bereit. Quelle: Link Windows mit NTLM: Das Ende des Albtraums – vielleicht demnächst (2026-02-02 16:48 UTC) Kurz: Microsoft will das unsichere NTLM-Protokoll mit der nächsten Windows Server-Version standardmäßig deaktivieren. Dessen Erscheinungstermin bleibt jedoch offen. Quelle: Link Dell Unity: Angreifer können Schadcode mit Root-Rechten ausführen (2026-02-02 13:13 UTC) Kurz: Admins sollten zeitnah ein wichtiges Sicherheitsupdate für Dell Unity Operating Environment installieren. Quelle: Link BleepingComputer New GlassWorm attack targets macOS via compromised OpenVSX extensions (2026-02-02 22:04 UTC) Kurz: A new GlassWorm malware attack through compromised OpenVSX extensions focuses on stealing passwords, crypto-wallet data, and developer credentials and configurations from macOS systems. […] Quelle: Link Russian hackers exploit recently patched Microsoft Office bug in attacks (2026-02-02 21:00 UTC) Kurz: Ukraine’s Computer Emergency Response Team (CERT) says that Russian hackers are exploiting CVE-2026-21509, a recently patched vulnerability in multiple versions of Microsoft Office. […] Quelle: Link Malicious MoltBot skills used to push password-stealing malware (2026-02-02 19:11 UTC) Kurz: More than 230 malicious packages for the personal AI assistant OpenClaw (formerly known as Moltbot and ClawdBot) have been published in less than a week on the tool’s official registry and on GitHub. […] Quelle: Link The Hacker News Mozilla Adds One-Click Option to Disable Generative AI Features in Firefox (2026-02-03 05:39 UTC) Kurz: Mozilla on Monday announced a new controls section in its Firefox desktop browser settings that allows users to completely turn off generative artificial intelligence (GenAI) features. “It provides a single place to block current and future… Quelle: Link Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group (2026-02-03 04:55 UTC) Kurz: A China-linked threat actor known as Lotus Blossom has been attributed with medium confidence to the recently discovered compromise of the infrastructure hosting Notepad++. The attack enabled the state-sponsored hacking group to deliver a p… Quelle: Link Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users (2026-02-02 17:49 UTC) Kurz: A security audit of 2,857 skills on ClawHub has found 341 malicious skills across multiple campaigns, according to new findings from Koi Security, exposing users to new supply chain risks. ClawHub is a marketplace designed to make it easy f… Quelle: Link Neue CVEs (letzte 24h, NVD‑Abgleich) Fortinet FortiGate (7.4.x) Keine neuen Treffer in den letzten 24h. Atlassian (Jira/Confluence) Keine neuen Treffer in den letzten 24h. HPE/Aruba Switches Keine neuen Treffer in den letzten 24h. VMware ESXi/vCenter (7.x) Keine neuen Treffer in den letzten 24h. Hinweis CVE‑Treffer sind ein Frühwarn‑Check (NVD) und müssen für eure exakten Versionen/Deployments gegengeprüft werden (Vendor Advisory/Patches).

Aktuelle Security‑News heise security Dell Unity: Angreifer können Schadcode mit Root-Rechten ausführen (2026-02-02 13:13 UTC) Kurz: Admins sollten zeitnah ein wichtiges Sicherheitsupdate für Dell Unity Operating Environment installieren. Quelle: Link Anonymisierendes Linux: Notfall-Update Tails 7.4.1 erschienen (2026-02-02 13:06 UTC) Kurz: Die auf Anonymität im Netz ausgerichtete Linux-Distribution Tails ist in Version 7.4.1 erschienen – ein Notfall-Update. Quelle: Link Notepad++: Updater-Übernahme durch staatliche Akteure (2026-02-02 11:19 UTC) Kurz: Angreifer hatten gezielt mit dem Notepad++-Updater Malware auf Systeme verfrachtet. Die Untersuchungen deuten auf staatliche Akteure. Quelle: Link BleepingComputer Panera Bread breach impacts 5.1 million accounts, not 14 million customers (2026-02-02 13:46 UTC) Kurz: The data breach notification service Have I Been Pwned says that a data breach at the U.S. food chain Panera Bread affected 5.1 million accounts, not 14 million customers as previously reported. […] Quelle: Link Microsoft fixes bug causing password sign-in option to disappear (2026-02-02 11:34 UTC) Kurz: Microsoft has fixed a known issue that was causing the password sign-in option to disappear from the lock screen options after installing Windows 11 updates released since August 2025. […] Quelle: Link NationStates confirms data breach, shuts down game site (2026-02-02 10:05 UTC) Kurz: NationStates, a multiplayer browser-based game, has confirmed a data breach after taking its website offline earlier this week to investigate a security incident. […] Quelle: Link The Hacker News ⚡ Weekly Recap: Proxy Botnet, Office Zero-Day, MongoDB Ransoms, AI Hijacks & New Threats (2026-02-02 11:59 UTC) Kurz: Every week brings new discoveries, attacks, and defenses that shape the state of cybersecurity. Some threats are stopped quickly, while others go unseen until they cause real damage. Sometimes a single update, exploit, or mistake changes ho… Quelle: Link Securing the Mid-Market Across the Complete Threat Lifecycle (2026-02-02 11:45 UTC) Kurz: For mid-market organizations, cybersecurity is a constant balancing act. Proactive, preventative security measures are essential to protect an expanding attack surface. Combined with effective protection that blocks threats, they play a cri… Quelle: Link Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select Users (2026-02-02 08:55 UTC) Kurz: The maintainer of Notepad++ has revealed that state-sponsored attackers hijacked the utility’s update mechanism to redirect update traffic to malicious servers instead. “The attack involved [an] infrastructure-level compromise that allowed … Quelle: Link Neue CVEs (letzte 24h, NVD‑Abgleich) Fortinet FortiGate (7.4.x) Keine neuen Treffer in den letzten 24h. Atlassian (Jira/Confluence) Keine neuen Treffer in den letzten 24h. HPE/Aruba Switches Keine neuen Treffer in den letzten 24h. VMware ESXi/vCenter (7.x) Keine neuen Treffer in den letzten 24h. Hinweis CVE‑Treffer sind ein Frühwarn‑Check (NVD) und müssen für eure exakten Versionen/Deployments gegengeprüft werden (Vendor Advisory/Patches). Betty Automatisierter IT‑Security Digest