A long one, but some fun updates https://jkindon.com/finding-the-value-in-your-citrix-investment-2025/ Likely the last in this vein of writing, hopefully of use

Rising star: Meet Dylan, MSRC’s youngest security researcher At just 13 years old, Dylan became the youngest security researcher to collaborate with the Microsoft Security Response Center (MSRC). His journey into cybersecurity is inspiring—rooted in curiosity, resilience, and a deep desire to make a difference. Early beginnings: From scratch to security Dylan’s fascination with technology began early. Like many kids, he started with Scratch—a visual programming language for making simple games and animations.

Quick Post: How to ensure the Test-WSMan cmdlet doesn’t give you false positives? https://www.jhouseconsulting.com/2025/07/02/how-to-ensure-the-test-wsman-cmdlet-doesnt-give-you-false-positives-3196

So, the trolls have come out in force yelling from their towers that this week Microsoft is the new #Failstrikegate because of that baseline bug. So, I end up writing a blog instead of shooting off fireworks: https://mobile-jon.com/2025/07/04/intune-security-baselines-the-truth-behind-the-chaos/

Congratulations to the top MSRC 2025 Q2 security researchers! Congratulations to all the researchers recognized in this quarter’s Microsoft Researcher Recognition Program leaderboard! Thank you to everyone for your hard work and continued partnership to secure customers. The top three researchers of the 2025 Q2 Security Researcher Leaderboard are wkai, Brad Schlintz (nmdhkr), and 0x140ce! Check out the full list of researchers recognized this quarter here.

Upcoming Evergreen changes: https://stealthpuppy.com/evergreen-change-2025/

vLCM Remediation Stuck at 2% Recently I came across a new issue and scenario in an environment where when trying to perform a vLCM function like remediation or staging, resulted in vLCM Remediation Stuck at 2%. When this occured, all the systems on the VMware vCenter Appliance were functioning with no errors or failed tasks. If you start the process [...] The post <a...

Congratulations to the MSRC 2025 Most Valuable Security Researchers! The Microsoft Researcher Recognition Program offers public thanks and recognition to security researchers who help protect our customers through discovering and sharing security vulnerabilities under Coordinated Vulnerability Disclosure. Today, we are excited to recognize this year’s 100 Most Valuable Researchers (MVRs), based on the total number of points earned for each valid report.

Call it a visual blog... New video talking some of my first mistakes leading a team (at Citrix Consulting, as it turns out):L

🧠 Just had the chance to share our perspective in Authority Magazine’s “Guardians of AI” series — diving into how we’re approaching safe, ethical, and responsible AI at Kasm. If you're curious about how we're blending AI with secure EUC workflows, it’s a great intro. I’ll be at World of EUC on August 4th — let’s connect and keep the conversation going! 🤖💬https://medium.com/authority-magazine/guardians-of-ai-jaymes-davis-of-kasm-technologies-on-how-ai-leaders-are-keeping-ai-safe-ethical-18c7233c9945

Customer guidance for SharePoint vulnerability CVE-2025-53770 Summary Microsoft is aware of active attacks targeting on-premises SharePoint Server customers. The attacks are exploiting a variant of CVE-2025-49706. This vulnerability has been assigned CVE-2025-53770. SharePoint Online in Microsoft 365 is not impacted. A patch is currently not available for this vulnerability. Mitigations and detections are provided below.

I am working on a new video and would love your help gathering information! Please vote and/or share! https://www.linkedin.com/posts/djeshelman_crowdstrike-activity-7352315676000231425-0q9p?utm_source=share&amp;utm_medium=member_android&amp;rcm=ACoAAAJHBmIBuHgbhe0qwHPeTZh-zqQCCZPa36I

HDX / GW / Web Insight or Security Violations stopped working on NetScaler Console since the latest CVE Firmware-Updates? Checkout here and let me know if it's also the solution for you, too. https://www.julianjakob.com/netscaler-hdx-and-gateway-insight-stopped-working/

My blog got a rebranding and is live at https://balintoberrauch.com 🔥 All existing links of my old domain still work, you're getting dynamically redirected to the new domain.

Wrote a blogpost that summarizes genai announcements from this summer https://msandbu.org/generative-ai-2025-summer-recap/

Read my article to discover how to prime a non-persistent Windows Image using an Autologon process with an auto logoff timer https://www.jhouseconsulting.com/2025/07/26/priming-a-non-persistent-windows-image-using-an-autologon-process-with-an-auto-logoff-timer-3343

How Microsoft defends against indirect prompt injection attacks Summary The growing adoption of large language models (LLMs) in enterprise workflows has introduced a new class of adversarial techniques: indirect prompt injection. Indirect prompt injection can be used against systems that leverage large language models (LLMs) to process untrusted data. Fundamentally, the risk is that an attacker could provide specially crafted data that the LLM misinterprets as instructions.

Laggy Overlay on AVD with published Apps on Windows App for Web (HTML5) ? See here why https://www.julianjakob.com/windows-cloud-laggy-overlay-in-published-apps/

I wrote a couple of articles on automating Nerdio Manager Shell Apps with the new REST API: https://stealthpuppy.com/nerdio-shell-apps-p1/ https://stealthpuppy.com/nerdio-shell-apps-p2/

❓ Does anyone have recent experience with static site generators other than Jekyll or Hugo? Looking to see what else is around that might be simpler or better

.NET Bounty Program now offers up to $40,000 in awards  We’re excited to announce significant updates to the Microsoft .NET Bounty Program. These changes expand the program’s scope, simplify the award structure, and offer great incentives for security researchers. The .NET Bounty Program now offers awards up to $40,000 USD for vulnerabilities impacting the .NET and ASP.NET Core (including Blazor and Aspire).

New research about deployment times in Azure: https://www.go-euc.com/how-consistent-are-the-azure-deployment-times/

Zero Day Quest: Join the largest hacking event with up to $5 million in total bounty awards Last year, we announced the largest hacking event in history: Zero Day Quest, with up to $4 million in bounty awards. The response from the global security community was incredible and helped improve security for our customers and partners. This year, Zero Day Quest is back with even more potential bounty awards: up to $5 million total for high-impact research in Cloud and AI security.

Microsoft Bounty Program year in review: $17 million in rewards We’re thrilled to share that this year, the Microsoft Bounty Program has distributed $17 million to 344 security researchers from 59 countries, the highest total bounty awarded in the program’s history. In close collaboration with the Microsoft Security Response Center (MSRC), these security researchers have helped identify and resolve more than a thousand potential vulnerabilities, strengthening protections for Microsoft customers around the world.

In the past, filtering published Apps visibility on Citrix DaaS with Entra ID groups was only possible when linked to application groups. Now, you can add the filter on the published app, directly. But watch out regarding a minimum VDA version. https://www.julianjakob.com/citrix-daas-filtering-published-apps-with-entra-id-groups/

I made a blog post about my time at EUC World Amplify and my experience presenting for the first time. https://thedxt.ca/2025/08/i-went-to-euc-world-amplify-2025/

For awhile, people have been requesting me to write a guide on migrating from Workspace ONE to Microsoft Intune as contracts are expiring and people reassess what platform makes the most sense to them. Read my new article and first ever akams detailing the challenges and options on migrating #mdm for each platform along with some data migration and backup strategies https://aka.ms/WS1toIntuneGuide