Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Microsoft Office 0-day vulnerability CVE-2026-21509; Emergency updates available
Microsoft Office 2016 to 2024 and Office 365 apps contain a zero-day vulnerability (CVE-2026-21509) that is being actively exploited in attacks. On January 26, 2026, Microsoft published initial information (also about mitigations) and emergency updates for Microsoft Office.
Windows 11 24H2/25H2: Citrix Director / Remote Assist fails with update KB5074109
Brief information for administrators of Citrix Virtual Desktop environments. I received several reports, that after installing security update KB5074109 from January 13, 2025, for Windows 11 24H2 or 25H2, Citrix Director failed to work. The reason is, that Microsoft Remote … Continue reading
Posted in issue, Security, Update, Windows
Tagged Citrix Director, issue, Update, Windows
Leave a comment
Scam: Uphold 'security incident' via third-party provider?
I was "informed" yesterday by email titled "Third-Party Data Breach Affecting Uphold Users", claiming, that there had been a "data breach" at a third-party provider affecting Uphold users. Uphold is a platform that provides a wallet for cryptocurrency. But this … Continue reading
Virtualbox 7.1.12 and 7.2.2: Vulnerability CVE-2025-62641
[German]It has just been announced that Virtualbox 7.1.12 and 7.2.2 contain the CVE-2025-62641 vulnerability. This could allow attackers to take over the host. There are also other vulnerabilities in these versions. Virtualbox 7.1.14 and 7.2.4 provide a remedy.
Posted in Security, Software, Virtualization
Tagged Security, Virtualbox, Virtualization
Leave a comment
Critical vulnerability CVE-2025-54236 in Adobe Commerce (Magento)
[German]A critical vulnerability, CVE-2025-54236, has been found in Adobe Commerce software (formerly Magento). Adobe Commerce allows unauthenticated attackers to upload files and, ultimately, even take over accounts. The vulnerability has been assigned a CVSS 3.1 score of 9.1 (on a … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Microsoft OneDrive and AI facial recognition in family photos
[German]I'm bringing up another topic that actually shows that it prohibits the use of Microsoft OneDrive for storing personal content. That's because Microsoft is testing AI-powered facial recognition using family photos stored on OneDrive.
Windows Server: Out-of-Band Updates for WSUS vulnerability CVE-2025-59287 (Oct. 23, 2025)
[German]There are out-of-band updates (e.g., KB5070883 for Windows Server 2019) that Microsoft released on October 23, 2025. The purpose of these emergency updates is to close a critical vulnerability in WSUS. The remote execution vulnerability CVE-2025-59287 has been rated with … Continue reading
Microsoft Office 2016/2019 End of Life; Keep it safe or say goodbye
[German]On October 14, 2025, Microsoft Office 2016 and 2019 has expired and Microsoft will no longer provide support for them. This is an opportunity to think about your situation. You could continue to use these versions securely for another five … Continue reading
Patchday: Microsoft Office Updates (October 14, 2025)
[German]On October 14, 2025 (the second Tuesday of the month, Microsoft Patch Day), Microsoft released several security updates for Microsoft Office 2016, as well as the C2R variants (Office 2016-2021 and 365) and other products. This month, serious vulnerabilities in … Continue reading
Posted in Office, Security, Update
Tagged Office, Patchday 10.2025, Security, Update
Leave a comment
Microsoft flags falsely Windows 10 21H2 Enterprise LTSC as EOL
[German]Brief information for owners and administrators of Windows 10 21H2 Enterprise LTSC (and, of course, the IoT version). Administrators of these machines are (incorrectly) being shown information that support for this version is now ending. In my opinion, this is … Continue reading