Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Software
Vulnerability CVE-2026-3055 in Citrix NetScaler ADC and Gateway is being exploited
On March 24, 2026, I warned of two critical vulnerabilities in the Citrix products mentioned in the post Critical vulnerabilities in Citrix NetScaler ADC and Gateway (March 2026). Now attacks exploiting one of these vulnerabilities are being observed in the … Continue reading
Critical vulnerabilities in Citrix NetScaler ADC and Gateway (March 2026)
[German]Citrix has issued a warning about several security vulnerabilities classified as critical in its Citrix Gateway and Citrix Netscaler ADC. CERT Bund has also published a corresponding advisory. Citrix has released firmware updates to address these vulnerabilities.
Windchill & ZeroPLM 0-day vulnerabilities
[German]The Windchill and ZeroPLM software systems contain critical vulnerabilities (CVS Index 10.0) that companies using these products should have been aware of since the weekend. These vulnerabilities have prompted various German state criminal investigation offices to send police officers to … Continue reading
Ubiquiti UniFi Network Application Vulnerabilities (CVE-2026-22557, CVE-2026-22558)
[German]Two critical vulnerabilities have recently been disclosed in the Ubiquiti UniFi Network Application. Vulnerability CVE-2026-22557 has a CVSS score of 10.0 and can be exploited without authentication to take over an account. CVE-2026-22558 has a CVSS score of 7.7 and … Continue reading
MC1179154: Microsoft Authenticator locks itself when jailbreak/root access is used
[German]A quick note for people who use the Microsoft Authenticator app on an iPhone or Android device. Microsoft has announced that, as of February 24, 2026, it will first warn and then block EntraID logins on devices with jailbreak (iOS) … Continue reading
Posted in Android, ios, Security, Software
Tagged Android, Authenticator, iOS, Security, Software
Leave a comment
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Ivanti EPMM vulnerability CVE-2026-1281; EU and Dutch authorities hacked
I will summarize some of the findings from the last few days regarding vulnerabilities in Ivanti Mobile Device Management (EPMM). In this context, there was also an attack on the EU Commission and an attack on the data protection authority … Continue reading
Top Methods to Convert OST to PST in 2026
Sponsored post – OST file – a cached copy of your mailbox items – is automatically generated when you configure Outlook profile with Exchange Server, Microsoft 365, or IMAP account. At times, situations arise when you need to open the … Continue reading
Critical vulnerability CVE-2025-54236 in Adobe Commerce (Magento)
[German]A critical vulnerability, CVE-2025-54236, has been found in Adobe Commerce software (formerly Magento). Adobe Commerce allows unauthenticated attackers to upload files and, ultimately, even take over accounts. The vulnerability has been assigned a CVSS 3.1 score of 9.1 (on a … Continue reading
Veeam Backup & Replication 12.3.2.4165; Patch from ISO not installable
[German]On October 14, 2025, Veeam released patch 12.3.2.4165 for its Veeam Backup & Replication product. According to the manufacturer, this patch is intended to eliminate several vulnerabilities. However, a reader informed me that he was unable to install this patch … Continue reading
SonicWall SSLVPN compromised: Vulnerabilities widely exploited
[German]Since October 4, 2025, security experts at Huntress have observed a sharp increase in compromised SonicWall SSLVPN instances. The nature of the attacks and the speed with which the attackers penetrate the systems suggest that they have valid login credentials.