{"id":792,"date":"2024-01-22T16:29:14","date_gmt":"2024-01-22T15:29:14","guid":{"rendered":"https:\/\/kroener-online.de\/?p=792"},"modified":"2024-01-22T16:29:14","modified_gmt":"2024-01-22T15:29:14","slug":"outlook-schwachstelle-ermoeglicht-passwortklau-per-kalendereinladung-golem-de","status":"publish","type":"post","link":"https:\/\/kroener-online.de\/?p=792","title":{"rendered":"Outlook: Schwachstelle erm\u00f6glicht Passwortklau per Kalendereinladung &#8211; Golem.de"},"content":{"rendered":"<p>Zun\u00e4chst erh\u00e4lt der Angreifer wohl nur einen NTLM-v2-Hash. Durch einen Brute-Force-Angriff kann er das Passwort jedoch auch im Klartext bestimmen.<br \/>\n\u2014 Weiterlesen <a href=\"https:\/\/www.golem.de\/news\/outlook-schwachstelle-ermoeglicht-passwortklau-per-kalendereinladung-2401-181397.html\">www.golem.de\/news\/outlook-schwachstelle-ermoeglicht-passwortklau-per-kalendereinladung-2401-181397.html<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Zun\u00e4chst erh\u00e4lt der Angreifer wohl nur einen NTLM-v2-Hash. Durch einen Brute-Force-Angriff kann er das Passwort jedoch auch im Klartext bestimmen. \u2014 Weiterlesen www.golem.de\/news\/outlook-schwachstelle-ermoeglicht-passwortklau-per-kalendereinladung-2401-181397.html<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"advanced_seo_description":"","jetpack_seo_html_title":"","jetpack_seo_noindex":false,"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[25],"tags":[],"class_list":["post-792","post","type-post","status-publish","format-standard","hentry","category-security"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/pac17Y-cM","jetpack-related-posts":[{"id":704,"url":"https:\/\/kroener-online.de\/?p=704","url_meta":{"origin":792,"position":0},"title":"Downfall: Neue Schwachstelle in Intel-CPUs erm\u00f6glicht Datenklau &#8211; Golem.de","author":"volker.kroener","date":"9. August 2023","format":false,"excerpt":"Eine Downfall genannte Schwachstelle in Intel-Prozessoren erlaubt es Angreifern, sensible Daten anderer Benutzer eines Systems abzugreifen. \u2014 Weiterlesen www.golem.de\/news\/downfall-neue-schwachstelle-in-intel-cpus-ermoeglicht-datenklau-2308-176592.html","rel":"","context":"In &quot;Security&quot;","block_context":{"text":"Security","link":"https:\/\/kroener-online.de\/?cat=25"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":809,"url":"https:\/\/kroener-online.de\/?p=809","url_meta":{"origin":792,"position":1},"title":"Online-Ausweisfunktion: Schwachstelle in eID-Verfahren erm\u00f6glicht Identit\u00e4tsklau &#8211; Golem.de","author":"volker.kroener","date":"16. Februar 2024","format":false,"excerpt":"Durch die Schwachstelle k\u00f6nnen Angreifer im Namen fremder Personen beispielsweise Bankkonten er\u00f6ffnen oder digitale Beh\u00f6rdeng\u00e4nge durchf\u00fchren. \u2014 Weiterlesen www.golem.de\/news\/online-ausweisfunktion-schwachstelle-in-eid-verfahren-ermoeglicht-identitaetsklau-2402-182283.html","rel":"","context":"In &quot;Security&quot;","block_context":{"text":"Security","link":"https:\/\/kroener-online.de\/?cat=25"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":653,"url":"https:\/\/kroener-online.de\/?p=653","url_meta":{"origin":792,"position":2},"title":"TeamsPhisher: Tool automatisiert Angriffe auf Teams-Schwachstelle | heise online","author":"volker.kroener","date":"6. Juli 2023","format":false,"excerpt":"\u00dcber eine Schwachstelle in Teams k\u00f6nnen Angreifer Malware unterjubeln. Ein jetzt ver\u00f6ffentlichtes Tool macht diese Attacken noch einfacher. \u2014 Weiterlesen www.heise.de\/news\/TeamsPhisher-Tool-automatisiert-Angriffe-auf-Teams-Schwachstelle-9208677.html","rel":"","context":"In &quot;Security&quot;","block_context":{"text":"Security","link":"https:\/\/kroener-online.de\/?cat=25"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":766,"url":"https:\/\/kroener-online.de\/?p=766","url_meta":{"origin":792,"position":3},"title":"Wird aktiv ausgenutzt: Owncloud-Schwachstelle gef\u00e4hrdet Server in Deutschland &#8211; Golem.de","author":"volker.kroener","date":"29. November 2023","format":false,"excerpt":"Die Schwachstelle erm\u00f6glicht es Angreifern, Zugangsdaten, Lizenzschl\u00fcssel und andere sensible Informationen von Owncloud-Instanzen abzugreifen. \u2014 Weiterlesen www.golem.de\/news\/wird-aktiv-ausgenutzt-owncloud-schwachstelle-gefaehrdet-server-in-deutschland-2311-179854.html","rel":"","context":"In &quot;Security&quot;","block_context":{"text":"Security","link":"https:\/\/kroener-online.de\/?cat=25"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":719,"url":"https:\/\/kroener-online.de\/?p=719","url_meta":{"origin":792,"position":4},"title":"Blo\u00dfes \u00d6ffnen reicht: Winrar-Schwachstelle erlaubt Ausf\u00fchrung von Schadcode &#8211; Golem.de","author":"volker.kroener","date":"19. August 2023","format":false,"excerpt":"Durch eine Schwachstelle in Winrar k\u00f6nnen Angreifer anhand speziell pr\u00e4parierter Archivdateien Schadcode auf einem Zielsystem ausf\u00fchren. \u2014 Weiterlesen www.golem.de\/news\/blosses-oeffnen-reicht-winrar-schwachstelle-erlaubt-ausfuehrung-von-schadcode-2308-176904.html","rel":"","context":"In &quot;Security&quot;","block_context":{"text":"Security","link":"https:\/\/kroener-online.de\/?cat=25"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":677,"url":"https:\/\/kroener-online.de\/?p=677","url_meta":{"origin":792,"position":5},"title":"Sofort updaten: Citrix warnt vor aktiv ausgenutzter Zero-Day-Schwachstelle &#8211; Golem.de","author":"volker.kroener","date":"20. Juli 2023","format":false,"excerpt":"Eine kritische Schwachstelle in Citrix Netscaler ADC und Gateway erlaubt Angreifern die Ausf\u00fchrung von Code ohne jegliche Authentifizierung. \u2014 Weiterlesen www.golem.de\/news\/sofort-updaten-citrix-warnt-vor-aktiv-ausgenutzter-zero-day-schwachstelle-2307-175975.html","rel":"","context":"In &quot;Security&quot;","block_context":{"text":"Security","link":"https:\/\/kroener-online.de\/?cat=25"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"jetpack_likes_enabled":true,"_links":{"self":[{"href":"https:\/\/kroener-online.de\/index.php?rest_route=\/wp\/v2\/posts\/792","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/kroener-online.de\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kroener-online.de\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kroener-online.de\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/kroener-online.de\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=792"}],"version-history":[{"count":0,"href":"https:\/\/kroener-online.de\/index.php?rest_route=\/wp\/v2\/posts\/792\/revisions"}],"wp:attachment":[{"href":"https:\/\/kroener-online.de\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=792"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kroener-online.de\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=792"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kroener-online.de\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=792"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}