Windows design flaw allows disabling user group policies since over 25 years

Posted on 2025-06-03 by guenni

Windows[German]A somewhat unconventional design decision by the Windows developers makes it possible for attackers to locally override group policies for users (user group policies). Normal user rights and a dll file shipped with Windows are sufficient. Microsoft has no plans to solve this problem, that might be around since over 25 years. This is the conclusion of a discussion between security researcher Stefan Kanthak and the Microsoft Security Response Center (MSRC) team. I was partially involved as a tester and have summarized it below.

Continue reading

Posted in issue, Security, Windows | Tagged , , | Leave a comment

Windows 11 24H2: PowerShell AppLocker/WDAC Script Enforcement was broken for months

Posted on 2025-06-02 by guenni

Windows[German]On this occasion, I'll take up a topic that came to my attention at the beginning of May 2025. Administrators noticed that the PowerShell Script Enforcement in AppLocker/WDAC had been broken for months. Although this should now be fixed with PowerShell 7.6, it shows that you can't look often enough when the worst comes to the worst.

Continue reading

Posted in Security, Windows | Tagged , , , , | Leave a comment

Windows 11 22H2 / 23H2: Update KB5058405 causes BSOD 0xc0000098

Posted on 2025-06-02 by guenni

Windows[German]Another addendum from the May 2025 patchday. The update KB5058405 rolled out on May 13, 2025 for Windows 11 22H2 / 23H2 leads to a blue screen with the error code 0xc0000098 on some systems. The system hangs in recovery mode because the ACPI.sys is causing problems and then wants to be repaired. There has been an out-of-band update since May 31, 2025 to fix the problem.

Continue reading

Posted in issue, Update, Windows | Tagged , , | Leave a comment

Windows 10 end of support: The "End of 10" campaign to switch to Linux

Posted on 2025-06-01 by guenni

[German]On October 14, 2025, Microsoft will end support for Windows 10 22H2 with the delivery of the last security updates. Enthusiasts want to use the end of Windows 10 in the "End of 10" campaign to persuade users to switch to Linux. This is because Linux runs on these systems, while Windows 11 has hardware requirements that are too high.

Continue reading

Posted in Linux, Windows | Tagged , | 2 Comments

WhatsApp will no longer work on these devices from June 1, 2025

Posted on 2025-05-31 by guenni

[German]Brief information for WhatsApp users among our readership with older devices. The developers are cutting the ability to run WhatsApp on certain older devices running iOS. This will end on June 1, 2025.

Continue reading

Posted in Android, devices, ios, issue, Software | Tagged , , , , | Leave a comment

Why ISL Online: Critical factors when choosing a remote desktop solution

[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...

Microsoft Authenticator: Warning to safe passwords before the password feature will be disabled

Posted on 2025-05-31 by guenni

Stop - Pixabay[German]Microsoft Authenticator is a free app that allows you to log in to online accounts without using a password. Instead, options such as fingerprint, facial recognition or PIN are used. The app could also store passwords. However, this function will be switched off in July 2025. The Microsoft Authenticator app has now started to warn users that the password saving function will soon be removed.

Continue reading

Posted in Software | Tagged | 1 Comment

Phishing with appointment invitations targets Office 365 accounts

Posted on 2025-05-31 by guenni

Sicherheit (Pexels, allgemeine Nutzung)[German]I'm pick up on a topic that is somehow already known in this form. Owners of Microsoft Office 365 accounts receive appointment invitations that claim that an action needs to be carried out. But in the background is a phisher who is trying to rip off victims. I have now come across a case where the emails come from Microsoft.

Continue reading

Posted in General, Office, Security, Software | Tagged , , | Leave a comment

Microsoft Phishing with MS 365 tenants?

Posted on 2025-05-30 by guenni

Mail[German]I'd like to discuss an email I allegedly received from Microsoft regarding an "expiring tenant". Something needs to be ordered because the tenant, which has been inactive for more than 200 days, will otherwise expire. Is it a legitimate mail or phishing, that is the question here? Spoiler: I have failed first to answer the question with 100 % certainty. Then a German blog reader directed me to the right platform – and yes, the phishing mail is a legit Microsoft mail – WTF!

Continue reading

Posted in Cloud, Security, Software | Tagged , , , | 10 Comments

BadSuccessor: Read up on the dMSA AD privilege increase issue

Posted on 2025-05-29 by guenni

Windows[German]Recently, security researchers have pointed out a potential vulnerability lurking in the delegated Managed Service Accounts (dMSAs) newly introduced in Windows Server 2025. By abusing dMSAs, attackers can take over any principal in the domain. A security researcher is critical of the fact that Microsoft is waiting with a patch. And a developer has created a .NET PoC that can be used to test the vulnerability – here is an addendum.

Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

Serious connection issue on ports of the HP Aruba/HP 1930 switch

Posted on 2025-05-28 by guenni

Stop - Pixabay[German]I'm going to post an issue here in the blog that came to my attention recently. It concerns the HP Aruba/HP 1930 switch, where there may be connection issues. If I'm interpreting it correctly, this is probably a software error which means that devices on certain connections (ports) can't get a connection. There are now various reports about this on the Internet.

Continue reading

Posted in devices, issue | Tagged , | Leave a comment