[German]Microsoft Authenticator is a free app that allows you to log in to online accounts without using a password. Instead, options such as fingerprint, facial recognition or PIN are used. The app could also store passwords. However, this function will be switched off in July 2025. The Microsoft Authenticator app has now started to warn users that the password saving function will soon be removed.
[German]I'm pick up on a topic that is somehow already known in this form. Owners of Microsoft Office 365 accounts receive appointment invitations that claim that an action needs to be carried out. But in the background is a phisher who is trying to rip off victims. I have now come across a case where the emails come from Microsoft.
[German]I'd like to discuss an email I allegedly received from Microsoft regarding an "expiring tenant". Something needs to be ordered because the tenant, which has been inactive for more than 200 days, will otherwise expire. Is it a legitimate mail or phishing, that is the question here? Spoiler: I have failed first to answer the question with 100 % certainty. Then a German blog reader directed me to the right platform – and yes, the phishing mail is a legit Microsoft mail – WTF!
[German]Recently, security researchers have pointed out a potential vulnerability lurking in the delegated Managed Service Accounts (dMSAs) newly introduced in Windows Server 2025. By abusing dMSAs, attackers can take over any principal in the domain. A security researcher is critical of the fact that Microsoft is waiting with a patch. And a developer has created a .NET PoC that can be used to test the vulnerability – here is an addendum.
[German]I'm going to post an issue here in the blog that came to my attention recently. It concerns the HP Aruba/HP 1930 switch, where there may be connection issues. If I'm interpreting it correctly, this is probably a software error which means that devices on certain connections (ports) can't get a connection. There are now various reports about this on the Internet.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Microsoft has released optional cumulative (preview) updates for Windows 11 22H2-23H2 (KB5058502) on April 27, 2025 and for Windows 11 24H2 (KB5058499) on April 28, 2025. There is also the preview update KB5058481 for Windows 10 22H2. These updates contain corrections that can be tested and will then be rolled out as fixes in the following month.
Continue reading
[German]Microsoft released an out-of-band update for Windows Server 2022 on May 23, 2025 to prevent the Hyper-V platform from freezing. On May 27, 2025 another out-of-band update for Windows 11 24H2 has been released to fix the same issue. And there is an out-of-band update for Windows 10 22H2. Here is a brief overview what's been documented by Microsoft.
[German]On May 13, 2025 (second Tuesday of the month, Microsoft Patchday), Microsoft released several security-related updates for Microsoft Office 2016, as well as the C2R variants (Office 2016-2021 and 365) and other products. In the meantime, I have received some reader feedback on problems. Excel can't load documents with filenames, containing leading square brackets [..].
[German]The Association of European Cloud Providers, CISPE, complains that VMware by Broadcom has increased the prices of its products for customers by a factor of 800 to 1500 percent following the takeover by Broadcom. Broadcom is accused of abusing its dominant market position and welcomes the EU competition complaint from the German IT user association VOICE.
[German]Even if Information Technology should move towards passwordless logins (passkey & Co.), logins using a user name and password are still widespread. Just as widespread are certain mistakes when choosing passwords, which jeopardizes security. I recently received an overview from Hostinger on this topic, which I would like to briefly post here.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
