Patches for Sharepoint Server 2016; China behind attacks, approx. 400 organizations compromised

Posted on 2025-07-22 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]An addendum to the 0-day vulnerability in Microsoft SharePoint and the observed wave of attacks. Microsoft has also released an emergency update for SharePoint Server 2016. In the meantime, there are reports that some of the attacks came from China via a 0-day exploit. And over 400 organizations have probably been compromised, with the USA and Germany being the most affected. In the meantime, Microsoft has also published a more detailed blog post. Here is a review with a summary.

Continue reading

Posted in Security, Software, Update | Tagged , , | Leave a comment

Is Windows 11 update offered despite deactivated TPM?

Posted on 2025-07-22 by guenni

Windows[German]Since Windows 10 22H2 will no longer be supported as of October 14, 2025, we can expect more Windows 11 upgrade campaigns from Microsoft. I would therefore like to ask the readership whether anyone else has noticed that these upgrade offers are also being made for non-compatible hardware, e.g. missing TPM?

Continue reading

Posted in Update, Windows | Tagged , , | Leave a comment

Sharepoint servers are attacked via 0-day vulnerability (CVE-2025-53770)

Posted on 2025-07-20 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Does anyone in the readership operate a SharePoint server that is accessible via the Internet? If so, the house may be on fire. Since yesterday, I have been receiving information that SharePoint servers have been attacked via 0-day exploits since July 18, 2025. This blog post will be updated – we have now the first patches.

Continue reading

Posted in Security, Software | Tagged , , | Leave a comment

Microsoft says it's ending U.S. Defense Department cloud maintenance by Chinese software engineers

Posted on 2025-07-20 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]That was kind of quick reaction after Microsoft was caught as a kind of  "with its finger in the honey pot", so to speak. A week after ProPublica's report, that Microsoft uses software engineers in China to maintain it's federal cloud, they draw back. Microsoft says it is no longer using engineers in China to maintain the US Department of Defense's (DoD) cloud systems.

Continue reading

Posted in Cloud, Security | Tagged , | Leave a comment

CrushFTP with 0-day vulnerability CVE-2025-54309

Posted on 2025-07-19 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Anyone from the my blog readers who uses the CrushFTP program for file transfer? In the meantime, several readers have reported (thanks for that) that there are reports of a 0-day vulnerability (CVE-2025-54309) in CrushFTP server, which is probably already being exploited.
Continue reading

Posted in Security, Software | Tagged , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Windows 10/11 and Server: Known issues (early July 2025)

Posted on 2025-07-19 by guenni

Windows[German]Another small addendum or collective article on known issues that Microsoft confirmed at the beginning of July 2025 for various Windows client versions. These range from broken Emoij search to firewall problems that have not yet been resolved. And Defender also seems to be causing problems.

Continue reading

Posted in issue, Update, Windows | Tagged , , | 1 Comment

Trend Micro Worry Free Business 10.0 SP 1 – Patch 2518 released

Posted on 2025-07-18 by guenni

Update[German]The security vendor Trend Micro has released Trend Micro Worry Free Business (WFBS) 10.0 SP 1 – Patch 2518 on 15.7.2025. The patch contains various security fixes and is also intended to fix various bugs. OpenSSL 3.0.15 in the Apache web server is updated to improve product security.

Continue reading

Posted in Security, Software, Update | Tagged , , | Leave a comment

Windows Server 2025: Authentication Bypass with Golden dMSA

Posted on 2025-07-18 by guenni

Windows[German]Delegated Managed Service Accounts (dMSA) were newly introduced in Windows Server 2025. Their design enables serious attacks on Managed Service Accounts and Active Directory resources. Semperis-Research has now developed Golden dMSA, a tool that contains the logic of the attack and helps to better understand the attack mechanisms and initiate defensive measures.

Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

Reduced license count for the Exchange Online Delicensing Resiliency feature

Posted on 2025-07-17 by guenni

Exchange Logo[German]Microsoft has slightly adjusted its criteria for delicensing resiliency for Exchange Online tenants. Now Exchange Online tenants with fewer than 10,000 licenses can also benefit from this function. This helps administrators who remove licenses in a tenant to prevent the mailbox from immediately becoming inoperable. Instead, there is a grace period.

Continue reading

Posted in Cloud | Tagged | Leave a comment

Europol & Co. destroys Russian cybercriminal network NoName057(16)

Posted on 2025-07-17 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]Law enforcement authorities have dismantled the network of the Russian NoName057(16) cyber group, with the help of Europol and other institutions. The perpetrators targeted the IT infrastructure of Ukraine and supporting countries, including many EU member states.

Continue reading

Posted in Security | Tagged | Leave a comment