Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
'Man in the Prompt' browser attack on LLMs
[German]Large Language Models (LLMs) can be attacked via prompts in order to elicit unauthorized data from the models. Man-in-the-prompt browser attacks could also be used to manipulate AI requests from users and use them for criminal activities.
Trump administration puts pressure on EU over digital rules
[German]US Secretary of State Marco Rubio has instructed US diplomats to work to undermine the EU's online moderation rules and to lobby the EU Commission accordingly. This is according to an article by Reuters, which has obtained a copy of … Continue reading
Over 28,000 unpatched hybrid Exchange instances (CVE-2025-53786) still online
[German]Microsoft Exchange Server hybrid configurations are vulnerable to the elevation of privilege vulnerability CVE-2025-53786. Over 28,000 instances are still unpatched. The US CISA has given authorities until Monday, August 11, 2025, to patch the vulnerability. Here is an overview
Windows Hello – not really suitable for business use says security experts
[German]Microsoft offers biometric authentication via Windows Hello on Windows 10 and Windows 11. Logging in securely using facial recognition or fingerprints instead of passwords? Not really, according to German security researchers, who warn against using Windows Hello in corporate environments.
Microsoft Lens app is being retired September 15, 2025
[German]The Microsoft Lens mobile app will be discontinued on September 15, 2025. Microsoft just announced this in the Microsoft 365 Admin Center. Its replacement will be—you guessed it—Microsoft Copilot.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Vulnerabilities in Lenovo UEFI and Dell notebooks
[German]Another brief summary of security vulnerabilities in devices. At the end of July 2025, Lenovo notebooks reported vulnerabilities that could be closed via UEFI updates. And in Dell notebooks, a vulnerability called ReVault was found in the ControlVault3 firmware for … Continue reading
Warning of attacks on SonicWall firewalls (SSL VPNs)
[German]Someone among the blog readership who relies on SonicWall. There have been reports for days that attacks on SonicWall firewalls are being observed. It seems to relate to the SSL VPN function of the Gen 7 SonicWall firewalls. It is … Continue reading
Microsoft Exchange Server Hybrid at risk by CVE-2025-53786
[German]Another note for administrators of Microsoft Exchange Server hybrid configurations. Microsoft points out that these configurations are at risk from an Elevation of Privilege vulnerability (CVE-2025-53786). However, there is a hotfix to eliminate this vulnerability in these hybrid configurations and … Continue reading
OneDrive Personal also syncs business data. Is this a problem?
[German]Quick survey for administrators among my blog readers: Is there a problem with OneDrive, and how are you dealing with it? In July 2025, Microsoft began allowing OneDrive Personal users to synchronize OneDrive for Business as well. How are you … Continue reading
Critical vulnerabilities (CVE-2025-54948, CVE-2025-54987) in Trend Micro Apex One
[German]Brief information for administrators who use the Trend Micro Apex One security solution under Windows. The manufacturer has issued a security notice about a critical vulnerability that probably affects all versions and is also under attack. There is a Fix, … Continue reading
Posted in Security, Software, Windows
Tagged Security, Software, Trend Micro, Update
Leave a comment