Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Security
Chrome and Edge emergency updates – and trouble in Chrome/Edge 137
[German]Short addendum from the last few days. Both Google had to provide the Chrome browser and Microsoft had to provide the Chromium-based Edge browser with an urgent security update. This is due to security vulnerabilities that have probably been exploited … Continue reading
Microsoft launches "European Security Program"
[German]Microsoft is currently intensively courting the European market in order to retain customers in the government sector. To this end, Redmond has announced a European Security Program. This new initiative is designed to strengthen cyber security across Europe and is … Continue reading
Android: Meta and Yandex escapted browser sandboxing and track users
[German]I'm adding an information that I came across a few days ago. Anyone using apps or services from Meta (Facebook & Co.) or Yandex (Russian, less common in DACH) on Android was tracked. Security researchers have discovered that tracking pixels … Continue reading
Cyber attack on H World Hotel Group (Steigenberger & Co.)?
[German]A quick call to the blog readership to see if anyone has any more information on this. I have received information that there was a successful cyber attack on the H World hotel group. This would presumably also affect Steigenberger. … Continue reading
Windows design flaw allows disabling user group policies since over 25 years
[German]A somewhat unconventional design decision by the Windows developers makes it possible for attackers to locally override group policies for users (user group policies). Normal user rights and a dll file shipped with Windows are sufficient. Microsoft has no plans … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Windows 11 24H2: PowerShell AppLocker/WDAC Script Enforcement was broken for months
[German]On this occasion, I'll take up a topic that came to my attention at the beginning of May 2025. Administrators noticed that the PowerShell Script Enforcement in AppLocker/WDAC had been broken for months. Although this should now be fixed with … Continue reading
Posted in Security, Windows
Tagged AppLocker, Powershell, Security, WDAC, Windows 11 24H2
Leave a comment
Phishing with appointment invitations targets Office 365 accounts
[German]I'm pick up on a topic that is somehow already known in this form. Owners of Microsoft Office 365 accounts receive appointment invitations that claim that an action needs to be carried out. But in the background is a phisher … Continue reading
Microsoft Phishing with MS 365 tenants?
[German]I'd like to discuss an email I allegedly received from Microsoft regarding an "expiring tenant". Something needs to be ordered because the tenant, which has been inactive for more than 200 days, will otherwise expire. Is it a legitimate mail … Continue reading
BadSuccessor: Read up on the dMSA AD privilege increase issue
[German]Recently, security researchers have pointed out a potential vulnerability lurking in the delegated Managed Service Accounts (dMSAs) newly introduced in Windows Server 2025. By abusing dMSAs, attackers can take over any principal in the domain. A security researcher is critical … Continue reading
The 4 most important password errors that jeopardize security
[German]Even if Information Technology should move towards passwordless logins (passkey & Co.), logins using a user name and password are still widespread. Just as widespread are certain mistakes when choosing passwords, which jeopardizes security. I recently received an overview from … Continue reading