[German]In June 2025, it became known that there are vulnerabilities in the firmware of almost 700 printer models from Brother and other manufacturers. There are now reports that attackers are using these vulnerabilities to attack printers that have not been updated via firmware updates.
[German]A short addendum that may be of interest to administrators of Microsoft Exchange Server 2016/2019 and Microsoft Skye for Business 2015 and 2019. These software versions were actually due to be removed from support on October 14, 2025. Anyone who has not yet switched to newer versions will receive security updates for a further six months via a fee-based ESU program.
[German]OpenAI released its "ChatGPT agent" on July 17, 2025. In a longer post on X, OpenAI boss Sam Altman takes this up. At the same time, Altman warns of potentially major risks when using this ChatGPT agent. Everything is still experimental.
[German]Microsoft has released the optional cumulative (preview) update KB5062649 for Windows 10 22H2 on July 22, 2025. In addition, the preview updates KB506266 for Windows 11 24H2 and KB5062663 for Windows 11 22H2 – 23H2 were published. These updates contain corrections that can be tested and will then be rolled out generally as fixes in the following month.
Continue reading
[German]An addendum to the 0-day vulnerability in Microsoft SharePoint and the observed wave of attacks. Microsoft has also released an emergency update for SharePoint Server 2016. In the meantime, there are reports that some of the attacks came from China via a 0-day exploit. And over 400 organizations have probably been compromised, with the USA and Germany being the most affected. In the meantime, Microsoft has also published a more detailed blog post. Here is a review with a summary.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Since Windows 10 22H2 will no longer be supported as of October 14, 2025, we can expect more Windows 11 upgrade campaigns from Microsoft. I would therefore like to ask the readership whether anyone else has noticed that these upgrade offers are also being made for non-compatible hardware, e.g. missing TPM?
[German]Does anyone in the readership operate a SharePoint server that is accessible via the Internet? If so, the house may be on fire. Since yesterday, I have been receiving information that SharePoint servers have been attacked via 0-day exploits since July 18, 2025. This blog post will be updated – we have now the first patches.
[German]That was kind of quick reaction after Microsoft was caught as a kind of "with its finger in the honey pot", so to speak. A week after ProPublica's report, that Microsoft uses software engineers in China to maintain it's federal cloud, they draw back. Microsoft says it is no longer using engineers in China to maintain the US Department of Defense's (DoD) cloud systems.
[German]Anyone from the my blog readers who uses the CrushFTP program for file transfer? In the meantime, several readers have reported (thanks for that) that there are reports of a 0-day vulnerability (CVE-2025-54309) in CrushFTP server, which is probably already being exploited.
Continue reading
[German]Another small addendum or collective article on known issues that Microsoft confirmed at the beginning of July 2025 for various Windows client versions. These range from broken Emoij search to firewall problems that have not yet been resolved. And Defender also seems to be causing problems.
-
MVP:
2013 – 2016
WIMVP:
2017 – 2020
