Category Archives: Security

Patchday: Windows Server-Updates (October 14, 2025)

Posted on 2025-10-15 by guenni

[German]On October 14, 2025 (the second Tuesday of the month, Microsoft's patch day), various cumulative updates were released for the supported versions of Windows Server. Below, I have listed the updates provided, along with some details for these Windows Server … Continue reading →

Posted in Security, Update, Windows | Tagged Patchday 10.2025, Security, Update, Windows Server | Leave a comment

Microsoft Security Update Summary (October 14, 2025)

Posted on 2025-10-15 by guenni

[German]Microsoft hat am 14. Oktober 2025 Sicherheitsupdates für Windows-Clients und -Server, für Office – sowie für weitere Produkte – veröffentlicht. Die Sicherheitsupdates beseitigen 167 Schwachstellen (CVEs), sieben kritisch, drei davon wurden als 0-day klassifiziert und zwei werden ausgenutzt. Nachfolgend findet … Continue reading →

Posted in Office, Security, Software, Update, Windows | Tagged Office, Patchday 10.2025, Security, Update, Windows | Leave a comment

Exchange Server Security Updates October 2025

Posted on 2025-10-14 by guenni

[German]Microsoft released the "October 2025" security update for Exchange Server on October 14, 2025. The security update applies to Exchange Server 2016, Exchange Server 2019, and, for the first time, Exchange Server Subscription Edition (SE). Exchange Online customers are already … Continue reading →

Posted in Security, Software, Update | Tagged Exchange, Security, Update | Leave a comment

Veeam Backup & Replication 12.3.2.4165; Patch from ISO not installable

Posted on 2025-10-14 by guenni

[German]On October 14, 2025, Veeam released patch 12.3.2.4165 for its Veeam Backup & Replication product. According to the manufacturer, this patch is intended to eliminate several vulnerabilities. However, a reader informed me that he was unable to install this patch … Continue reading →

Posted in issue, Security, Software | Tagged issue, Security, Software | Leave a comment

SonicWall SSLVPN compromised: Vulnerabilities widely exploited

Posted on 2025-10-12 by guenni

[German]Since October 4, 2025, security experts at Huntress have observed a sharp increase in compromised SonicWall SSLVPN instances. The nature of the attacks and the speed with which the attackers penetrate the systems suggest that they have valid login credentials.

Posted in devices, Security, Software | Tagged Security, Software, SonicWall | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Gemini Trifecta: Vulnerability in Google's Gemini Suite

Posted on 2025-10-12 by guenni

[German]Tenable recently revealed something very unpleasant. Google's Gemini Suite contained a vulnerability dubbed "Gemini Trifecta," which was uncovered by Tenable security researchers. This marks a decisive turning point in AI security: cybercriminals could not only have attacked Gemini, but also … Continue reading →

Posted in Security | Tagged AI, Security | Leave a comment

When vibe coding goes bad: Security incident involving AI provider localmind.ai – Part 1

Posted on 2025-10-11 by guenni

[German]It was a security incident waiting to happen; the only question was how soon it would occur. The AI provider localmind.ai has currently shut down all services. A "readily avoidable security vulnerability" could have allowed third parties to extract sensitive … Continue reading →

Posted in Security, Software | Tagged AI, Security, Software | Leave a comment

Troy Hunt is not allowed to include Qantas data from leak in HIBP

Posted on 2025-10-11 by guenni

[German]The Australian airline Qantas fell victim to a cyber incident involving data leakage. It's unfortunate when lawyers take up the case and a judge issues an injunction. Troy Hunt, who runs the website Have I Been Pwned (HIBP), is unable … Continue reading →

Posted in Security | Tagged Security | Leave a comment

MySonicWall Cloud Backup File Incident: All customers affected

Posted on 2025-10-10 by guenni

[German]Brief note to readers regarding an unfortunate development at SonicWall. There was a recent incident in which backup files of the firewall configuration were exposed. While it was initially reported that only a few accounts were affected, it has now … Continue reading →

Posted in Security, Software | Tagged Security, Software, SonicWall | Leave a comment

CrowdStrike: Security update for Falcon Sensor for Windows (CVE-2025-42701, CVE-2025-42706)

Posted on 2025-10-09 by guenni

[German]There are two medium-score vulnerabilities in CrowdStrike Falcon Sensors for Windows that have been patched by the manufacturer via an update. A discussion is currently raging because CrowdStrike refers to this as an "issue," while security researchers refer to it … Continue reading →

Posted in Security, Software | Tagged Security, Software | Leave a comment