Microsoft Office 2016 to 2024 and Office 365 apps contain a zero-day vulnerability (CVE-2026-21509) that is being actively exploited in attacks. On January 26, 2026, Microsoft published initial information (also about mitigations) and emergency updates for Microsoft Office.
The security updates for Windows released on January 13, 2026 are causing major problems, and Microsoft has had to release corrective updates. In the case of crashes in apps and Outlook Classic, uninstallation was even recommended. This is unfortunate for users of Windows 11 24H2/25H2 if the uninstallation fails with error code 0x800f0905. I've discussed the details in this article [use the translate option in the side bar of my German blog to read the article in English or other languages].
There are various issues caused by the security updates for Windows released on January 13, 2026. Among other things, issues with Outlook Classic when retrieving POP mail or program freezes have been reported. On January 24, 2026, Microsoft released out-of-band updates for affected Windows versions to fix the problem. I've discussed the details in this article [use the translate option in the side bar of my German blog to read the article in English or other languages].
Brief information for administrators of Citrix Virtual Desktop environments. I received several reports, that after installing security update KB5074109 from January 13, 2025, for Windows 11 24H2 or 25H2, Citrix Director failed to work. The reason is, that Microsoft Remote Assist used by Citrix Director fails.
I was "informed" yesterday by email titled "Third-Party Data Breach Affecting Uphold Users", claiming, that there had been a "data breach" at a third-party provider affecting Uphold users. Uphold is a platform that provides a wallet for cryptocurrency. But this is just scam. I'll summarize some information and explain why you should probably should stay away from the whole thing.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
An update to the new Outlook app, rolled out on December 5, 2025, causes issues. After that update, users recognized, that the app no longer starts. Clicking on the icon does nothing. Many users seems to be affected.
WordPress 6.9 was released on December 2, 2025 (I reported on this in the post WordPress 6.9 erschienen). I had to revert back to version 6.8.3 from October 2025 within my German IT blog because WordPress version 6.9 causes short "delays" on first attempt to access the site. Read more in this post (use build in site translate to switch to your language).
[German]A little story from the campfire as a Sunday sermon that caught my attention this week. One user had a problem with repeated packet loss on his WiFi connection. He set out to investigate and stumbled upon an incredible story. No, it wasn't the cat that had chewed through the cables.
[German]It has just been announced that Virtualbox 7.1.12 and 7.2.2 contain the CVE-2025-62641 vulnerability. This could allow attackers to take over the host. There are also other vulnerabilities in these versions. Virtualbox 7.1.14 and 7.2.4 provide a remedy.
[German]A critical vulnerability, CVE-2025-54236, has been found in Adobe Commerce software (formerly Magento). Adobe Commerce allows unauthenticated attackers to upload files and, ultimately, even take over accounts. The vulnerability has been assigned a CVSS 3.1 score of 9.1 (on a scale of 1 to 10) and is classified as critical.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
