[German]The LockBit infrastructure was supposed to have been dismantled with Operation Cronos. Trend Micro is now sounding the alarm because a new variant, LockBit 5.0, has been discovered. The malware attacks systems running Linux, Windows, and VMware ESXi instances. Here is an overview.
[German]If you use SonicWall VPN to access your IT networks, beware. There are reports that the ransomware group Akira is attacking SonicWall VPN accounts. And the group is apparently able to crack accounts that are secured with multi-factor authentication (MFA) under certain conditions.
[German]There has been an update to FSLogix version 25.09. Feedback from readers suggests that this fixes the error [58tm1] that frequently occurs in Outlook 365. In addition, the OneDrive bug in Windows Server 2019 that prevented folders from being renamed has reportedly been fixed. Neither error is documented in the FSLogix release notes, so I am highlighting this information separately in a post.
[German]On September 26, 2025, Microsoft lifted an upgrade block for Windows 11 24H2 that had been set for systems with Intel Smart Sound. This block had been in place since September 30, 2024, for systems with Intel 11th Gen Core processors because blue screens were triggered after upgrading to Windows 11 24H2.
[German]Are there any unused licenses in a Microsoft 365 tenant? I happened to come across a post on X where someone presented a PowerShell script that detects such unused licenses.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]I'm going to bring up a security issue surrounding Windows 11 24H2 that has been on my mind for about a week now. Security researchers at Zero Solarium have found a way to exploit the Windows file WerFaultSecure.exe to steal LSASS passwords from the cache. On the other hand, security applications can be frozen using WerFaultSecure.exe and a corresponding tool. However, Microsoft Defender detects this attempt to freeze the system. And the LSASS dump requires copying a Windows 8.1 file to the Windows 11 system.
[German]The SonicWall SMA 100 firewall product line will soon no longer be supported. After backup files were recently exposed via MySonicWall Cloud Backup for some customers, SonicWall appears to be responding. There is a firmware update for the SonicWall SMA 100 product line that is designed to remove rootkit malware.
[German]Today, another post for domain controller administrators. If anyone is thinking about adding a Windows Server 2025 as a domain controller (DC) in a mixed environment, don't do it. Adding the new Windows Server 2025 DC to an existing structure with old Windows Server DCs causes massive problems. The machine password cannot be changed and domain logins fail sporadically. This is a bug in Windows Server 2025 that has not been publicly confirmed, but the Microsoft product group is working on fixing it.
[German]There has been a nasty bug in OneDrive in conjunction with FSLogix since weeks, that occurs on Windows Server 2019, according to a reader observation. OneDrive items can then no longer be renamed. Microsoft Support has already thrown in the towel in this context. Here is a summary of what we know so far.
[German]Two days late, Microsoft has released the preview update KB5066198 for Windows 10 22H2. Among other things, this fixes the SMBv1 bug, which was already eliminated for Windows 11 23H2 on September 23, 2025, via a preview update. I have added the information to the article Windows 10 22H2/Windows 11 23H2: Preview Updates (September 23/25, 2025).
MVP:
2013 – 2016
WIMVP:
2017 – 2020
