Checklist for NetScaler (Citrix ADC) CVE-2025-5777 Citrix issued an alert (06/17/2025) about a critical vulnerability (CVE-2025-5777) in all NetScaler (Citrix ADC) & Gateway systems. Several working exploits have been published. Please note that simply updating the systems is not enough. You must terminate all active ICA and PCoIP sessions after all NetScaler appliances in the HA pair or cluster have been upgraded … <a href="https://www.deyda.net/index.php/en/2025/06/17/checklist-for-netscaler-citrix-adc-cve-2025-5777/"...

VMware vSphere 7 End of Life – October 2nd, 2025 A friendly reminder that it’s time to upgrade (or start planning) since VMware vSphere 7 is reaching end of life on October 2nd, 2025. This means that if you’re running VMware vSphere 7 in your environment, VMware will no longer release updates, security patches, and/or provide support for your environment. Note: You will require an [...] The post <a...

If you’re running Citrix Virtual Apps and Desktops (CVAD) or Desktops as a Service (DaaS), this daily health check script should be part of your routine. In my latest article, I show how I’ve enhanced Sacha Thomet’s legendary script to take it even further. https://www.jhouseconsulting.com/2025/06/21/the-citrix-virtual-apps-and-desktops-desktops-as-a-service-health-check-script-on-steroids-3181

Failure to Upgrade and Remediate with vLCM and vGPU on ESXi When upgrading VMware ESXi hosts using VMware vCenter, and vLCM (vSphere Lifecycle Management), you may notice a failure to upgrade and remediate with vLCM and vGPU on ESXi. This error appears in tasks as a general failure. Inside of vLCM when monitoring remediation, you’ll see an error in regards to a service, module, or VIB [...] The post <a...

NVIDIA vGPU powered AI Workstations for AI prototyping and AI Development Joe Cooper and I (Stephen Wagner), talk about AI Prototyping and AI Development with NVIDIA vGPU powered Virtualized Workstations. Using NVIDIA vGPU technology, NIMs (NVIDIA Inference Microservices), and VDI you can enable high powered, private, and secure AI Development Workstations. These environments can be spun up on your VMware infrastructure using NVIDIA datacenter GPUs, NVIDIA <a href="https://www.stephenwagner.com/2025/06/22/nvidia-vgpu-ai-workstations-prototyping-development/"...

One of @Marius Sandbu colleagues just released this article, but I don't think he's part of Slack WoEUC. And together with his Powershell module: https://github.com/erikgraa/PSNVIDIA.DLS, then it's quite nifty! So shout out to Erik Grina 🙂

RedirectionGuard: Mitigating unsafe junction traversal in Windows As attackers continue to evolve, Microsoft is committed to staying ahead by not only responding to vulnerabilities, but also by anticipating and mitigating entire classes of threats. One such threat, filesystem redirection attacks, has been a persistent vector for privilege escalation. In response, we’ve developed and deployed a new mitigation in Windows 11 called RedirectionGuard.

Quick post: What happened to the Citrix DaaS Remote PowerShell SDK Global Variables? https://www.jhouseconsulting.com/2025/06/26/what-happened-to-the-citrix-daas-remote-powershell-sdk-global-variables-3200

A brand new research has been published, which is a Microsoft Azure CPU Showdown: Intel vs AMD https://www.go-euc.com/microsoft-azure-cpu-showdown-intel-vs-amd/

Checklist for NetScaler (Citrix ADC) CVE-2025-5777 &amp; CVE-2025-6543 Citrix issued an alert (06/17/2025) about a critical vulnerability (CVE-2025-5777) in all NetScaler (Citrix ADC) & Gateway systems. Another critical vulnerability was announced on 25th June 2025 (CVE-2025-6543). Please note that simply updating the systems is not enough. You must terminate all active ICA and PCoIP sessions after all NetScaler appliances in the HA pair or … <a href="https://www.deyda.net/index.php/en/2025/06/26/checklist-for-netscaler-citrix-adc-cve-2025-5777/"...

FYI - new EUC HexaGrid is launched: https://www.linkedin.com/posts/rspruijt_ai-dex-euc-activity-7344655936306786305-5UrS?[…]m=member_desktop&amp;rcm=ACoAAABzq48BSX6HYlHGNXkWik4Cpqk8OEa8tBs

New blogpost is live! AV Products can have a HUGE impact on your VDI. 👉 Read it here: https://oberrauch.bz.it/2025/06/30/demystifying-av-in-a-vdi-environment/

A long one, but some fun updates https://jkindon.com/finding-the-value-in-your-citrix-investment-2025/ Likely the last in this vein of writing, hopefully of use

Rising star: Meet Dylan, MSRC’s youngest security researcher At just 13 years old, Dylan became the youngest security researcher to collaborate with the Microsoft Security Response Center (MSRC). His journey into cybersecurity is inspiring—rooted in curiosity, resilience, and a deep desire to make a difference. Early beginnings: From scratch to security Dylan’s fascination with technology began early. Like many kids, he started with Scratch—a visual programming language for making simple games and animations.

Quick Post: How to ensure the Test-WSMan cmdlet doesn’t give you false positives? https://www.jhouseconsulting.com/2025/07/02/how-to-ensure-the-test-wsman-cmdlet-doesnt-give-you-false-positives-3196

So, the trolls have come out in force yelling from their towers that this week Microsoft is the new #Failstrikegate because of that baseline bug. So, I end up writing a blog instead of shooting off fireworks: https://mobile-jon.com/2025/07/04/intune-security-baselines-the-truth-behind-the-chaos/

Congratulations to the top MSRC 2025 Q2 security researchers! Congratulations to all the researchers recognized in this quarter’s Microsoft Researcher Recognition Program leaderboard! Thank you to everyone for your hard work and continued partnership to secure customers. The top three researchers of the 2025 Q2 Security Researcher Leaderboard are wkai, Brad Schlintz (nmdhkr), and 0x140ce! Check out the full list of researchers recognized this quarter here.

Upcoming Evergreen changes: https://stealthpuppy.com/evergreen-change-2025/

vLCM Remediation Stuck at 2% Recently I came across a new issue and scenario in an environment where when trying to perform a vLCM function like remediation or staging, resulted in vLCM Remediation Stuck at 2%. When this occured, all the systems on the VMware vCenter Appliance were functioning with no errors or failed tasks. If you start the process [...] The post <a...

Congratulations to the MSRC 2025 Most Valuable Security Researchers! The Microsoft Researcher Recognition Program offers public thanks and recognition to security researchers who help protect our customers through discovering and sharing security vulnerabilities under Coordinated Vulnerability Disclosure. Today, we are excited to recognize this year’s 100 Most Valuable Researchers (MVRs), based on the total number of points earned for each valid report.

Call it a visual blog... New video talking some of my first mistakes leading a team (at Citrix Consulting, as it turns out):L

🧠 Just had the chance to share our perspective in Authority Magazine’s “Guardians of AI” series — diving into how we’re approaching safe, ethical, and responsible AI at Kasm. If you're curious about how we're blending AI with secure EUC workflows, it’s a great intro. I’ll be at World of EUC on August 4th — let’s connect and keep the conversation going! 🤖💬https://medium.com/authority-magazine/guardians-of-ai-jaymes-davis-of-kasm-technologies-on-how-ai-leaders-are-keeping-ai-safe-ethical-18c7233c9945

Customer guidance for SharePoint vulnerability CVE-2025-53770 Summary Microsoft is aware of active attacks targeting on-premises SharePoint Server customers. The attacks are exploiting a variant of CVE-2025-49706. This vulnerability has been assigned CVE-2025-53770. SharePoint Online in Microsoft 365 is not impacted. A patch is currently not available for this vulnerability. Mitigations and detections are provided below.

I am working on a new video and would love your help gathering information! Please vote and/or share! https://www.linkedin.com/posts/djeshelman_crowdstrike-activity-7352315676000231425-0q9p?utm_source=share&amp;utm_medium=member_android&amp;rcm=ACoAAAJHBmIBuHgbhe0qwHPeTZh-zqQCCZPa36I