Microsoft News Articles
Recent news articles refferecing the vendors vulnerabilities.
ForbesCVE-2025-62215Critical Microsoft Alert — Update Windows 10, 11 And Server Right Now
Microsoft has confirmed a zero-day vulnerability in the Windows Kernel that attackers have already exploited to gain system privileges. Act now.
2 days ago
U.S. CISA adds WatchGuard Firebox, Microsoft Windows, and Gladinet Triofox flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds WatchGuard Firebox, Microsoft Windows, and Gladinet Triofox flaws to its Known Exploited Vulnerabilities catalog.
3 days ago
CVE-2025-62215: Microsoft Patches Windows Kernel Zero-Day Vulnerability Under Active Exploitation | SOC Prime
Explore CVE-2025-62215 analysis, a critical Windows kernel zero-day under active exploitation, with the details on the SOC Prime blog.
4 days ago
MalwarebytesCVE-2025-60724Update now: November Patch Tuesday fixes Windows zero-day exploited in the wild
This month’s Windows update closes several major security holes, including one that’s already being used by attackers. Make sure your PC is up to date.
4 days ago
The Hacker NewsCVE-2025-60704Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack
Microsoft fixes 63 flaws, including an exploited Windows Kernel zero-day and a critical RCE bug.
4 days ago
Help Net SecurityCVE-2025-62215Patch Tuesday: Microsoft fixes actively exploited Windows kernel vulnerability (CVE-2025-62215) - Help Net Security
Microsoft fixed some 60+ vulnerabilities on this Patch Tuesday, among them an actively exploited Windows Kernel flaw (CVE-2025-62215).
4 days ago
Cyber PressCVE-2025-62215Windows Kernel 0-Day Vulnerability Actively Exploited in the Wild to Escalate Privileges
Microsoft's exploitability index lists "Exploitation Detected," indicating real-world use despite the absence of public disclosure.
4 days ago
Patch Now: Microsoft Flags Zero-Day & Zero-Click Bugs
Security teams may have a less burdensome rollout in November after October's Goliath Patch Tuesday, but shouldn't wait on priority fixes.
4 days ago
csoonline.comCVE-2025-9491Chinese hackers target Western diplomats using hard-to-patch Windows shortcut flaw
Chinese UNC6384 campaign cleverly exploits Windows .LNK vulnerability, security company finds.
1 week ago
Red Hot CyberCVE-2025-9491Chinese hackers target European diplomatic agencies (including Italy)
Hackers from the China-linked UNC6384 group are conducting a cyberespionage campaign against European diplomatic and government agencies by exploiting a Windows vulnerability.
2 weeks ago
The Hacker NewsCVE-2024-38197Microsoft Teams Bugs Let Attackers Impersonate Colleagues and Edit Messages Unnoticed
Four Microsoft Teams flaws let attackers impersonate coworkers and manipulate chats before patches.
2 weeks ago
DarktraceCVE-2025-59287Darktrace’s Analysis of Post-Exploitation Activities on CVE-2025-59287
This blog details Darktrace’s analysis of the vulnerability, focusing on two US customer where active exploitation was detected.
2 weeks ago
CyberSecurityNewsCVE-2025-59287Hackers Actively Scanning for TCP Port 8530/8531 Linked to WSUS Vulnerability CVE-2025-59287
WSUS infrastructure Network sensors collected from security organizations, in scans directed at TCP port 8530 and 8531.
2 weeks ago
Red Hot CyberCVE-2025-59287WSUS security update has broken hotpatches on Windows Server 2025
A security update for WSUS has broken hotpatching on some Windows Server 2025 devices, causing registration issues.
2 weeks ago
Red Hot CyberCVE-2025-59287WSUS security update has broken hotpatches on Windows Server 2025
A security update for WSUS has broken hotpatching on some Windows Server 2025 devices, causing registration issues.
2 weeks ago
CyberSecurityNewsCVE-2025-59287Microsoft Patch for WSUS Vulnerability has Broken Hotpatching on Windows Server 2025
In a recent setback for Windows administrators, Microsoft's October 2025 security update addressing a critical vulnerability in Windows Server Update Services (WSUS) has inadvertently broken hotpatching functionality on a subset of Windows Server 2025 systems.
2 weeks ago
Microsoft: Patch for WSUS flaw disabled Windows Server hotpatching
An out-of-band (OOB) security update that patches an actively exploited Windows Server Update Service (WSUS) vulnerability has broken hotpatching on some Windows Server 2025 devices.
2 weeks ago
Cyber PressCVE-2025-59287Hackers Actively Scanning TCP Ports 8530/8531 for WSUS Vulnerability CVE-2025-59287
These scans represent a shift from research-related activities to what appears to be malicious reconnaissance efforts by threat actors searching for vulnerable systems.
2 weeks ago
GBHackers NewsCVE-2025-59287Hackers Actively Scanning TCP Ports 8530/8531 for WSUS CVE-2025-59287
Security researchers have detected a spike in suspicious network traffic targeting Windows Server Update Services (WSUS) infrastructure worldwide.
2 weeks ago
TechNaduWindows GDI Vulnerabilities Lead to RCE and Data Leaks - TechNadu
Check Point Research found three critical flaws in Windows GDI, including one for remote code execution. Microsoft has issued patches to fix them.
2 weeks ago
Chinese APT Exploits Unpatched Windows Flaw in Recent Attacks
Chinese threat actor exploiting an unpatched Windows shortcut vulnerability in fresh attacks targeting the diplomatic community in Europe.
2 weeks ago
Inbox.lvCVE-2025-9491Failure: Microsoft Failed to Fix Old Windows Vulnerability
This concerns a zero-day vulnerability identified as ZDI-CAN-25373, later changed to CVE-2025-9491. The old issue was ignored until March 2025, when Trend Micro specialists reported it. They noted that hackers have been aware of the system flaw for
2 weeks ago
Inbox.lvCVE-2025-9491Failure: Microsoft Failed to Fix Old Windows Vulnerability
This concerns a zero-day vulnerability identified as ZDI-CAN-25373, later changed to CVE-2025-9491. The old issue was ignored until March 2025, when Trend Micro specialists reported it. They noted that hackers have been aware of the system flaw for
2 weeks ago
ForbesCVE-2025-9491New Warning As Microsoft Windows Attacks Confirmed — No Fix Available
Microsoft has no fix available, and the attacks are already underway. What Windows users need to know about CVE-2025-9491.
2 weeks ago
Help Net SecurityCVE-2025-9491Unpatched Windows vulnerability continues to be exploited by APTs (CVE-2025-9491) - Help Net Security
A Windows vulnerability (CVE-2025-9491, aka ZDI-CAN-25373) that threat actors have been leveraging since 2017 continues to be exploited.
2 weeks ago
Windows zero-day actively exploited to spy on European diplomats
A China-linked hacking group is exploiting a Windows zero-day in attacks targeting European diplomats in Hungary, Belgium, and other European nations. According to Arctic Wolf Labs, the attack chain begins...
2 weeks ago
Windows zero-day actively exploited to spy on European diplomats
A China-linked hacking group is exploiting a Windows zero-day in attacks targeting European diplomats in Hungary, Belgium, and other European nations.
2 weeks ago
The Hacker NewsCVE-2025-59287CISA and NSA Issue Urgent Guidance to Secure WSUS and Microsoft Exchange Servers
CISA and NSA warn of WSUS and Exchange attacks, urging immediate patching and zero trust adoption.
2 weeks ago
CISA and NSA share tips on securing Microsoft Exchange servers
The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) have released guidance to help IT administrators harden Microsoft Exchange servers on their networks against attacks.
2 weeks ago
CVE-2025-59287 Detection: A Critical Unauthenticated RCE Vulnerability in Microsoft WSUS Under Active Exploitation | SOC Prime
Detect CVE-2025-59287 exploitation attempts, a new critical RCE vulnerability in Microsoft WSUS, with curated Sigma rules from SOC Prime Platform.
2 weeks ago
Help Net SecurityCVE-2025-59287Attackers exploiting WSUS vulnerability drop Skuld infostealer (CVE-2025-59287) - Help Net Security
Attackers have been spotted exploiting a WSUS vulnerability (CVE-2025-59287) to deploy infostealer malware on unpatched Windows servers.
2 weeks ago
CyberSecurityNewsCVE-2025-58726New Attack Combines Ghost SPNs and Kerberos Reflection to Elevate Privileges on SMB Servers
A sophisticated privilege escalation vulnerability in Windows SMB servers, leveraging Ghost Service Principal Names (SPNs) and Kerberos authentication reflection to achieve remote SYSTEM-level access.
2 weeks ago
BitdefenderCVE-2025-59287Technical Advisory: Critical Unauthenticated RCE in Windows Server Update Services (WSUS) - CVE-2025-59287
TL;DR Our telemetry indicates an active exploitation campaign targeting vulnerable Windows Server Update Services (WSUS) systems via CVE-2025-59287 (CVSS 9.
2 weeks ago
Sophos NewsCVE-2025-59287Windows Server Update Services (WSUS) vulnerability abused to harvest sensitive data
Exploitation of CVE-2025-59287 began after public disclosure and the release of proof-of-concept code Counter Threat Unit™ (CTU) researchers are investigating exploitation of a remote code...
2 weeks ago
Red Hot CyberCVE-2025-59287Tasting the Exploit: HackerHood tests Microsoft WSUS CVE-2025-59287 Exploit
CVE-2025-59287 poses a high risk to organizations using WSUS for centralized update management.
3 weeks ago
Microsoft Details ASP.NET Vulnerability That Enables Attackers To Smuggle HTTP Requests
Microsoft has issued a critical security update for ASP.NET Core to address CVE-2025-55315, a high-severity flaw that enables HTTP request smuggling and could allow attackers to bypass key security controls.
3 weeks ago
CyberSecurityNewsCVE-2025-55315Microsoft Details ASP.NET Vulnerability That Enables Attackers To Smuggle HTTP Requests
Microsoft has issued a critical security update for ASP.NET Core to address CVE-2025-55315, a high-severity flaw that enables HTTP request smuggling and could allow attackers to bypass key security controls.
3 weeks ago
GBHackers NewsCVE-2025-55315Microsoft Issues Alert on ASP.NET Flaw Allowing HTTP Request Smuggling Attacks
Microsoft has released a critical security update addressing a severe vulnerability in ASP.NET Core that could enable attackers to execute HTTP request smuggling attacks.
3 weeks ago
GBHackers NewsCVE-2025-55315Microsoft Issues Alert on ASP.NET Flaw Allowing HTTP Request Smuggling Attacks
Microsoft has released a critical security update addressing a severe vulnerability in ASP.NET Core that could enable attackers to execute HTTP request smuggling attacks.
3 weeks ago
Security AffairsCVE-2025-55315Critical ASP.NET flaw hits QNAP NetBak PC Agent
QNAP warns of critical flaw (CVE-2025-55315) in NetBak PC Agent, letting attackers hijack credentials or bypass security via HTTP smuggling
3 weeks ago
Security AffairsCVE-2025-55315Critical ASP.NET flaw hits QNAP NetBak PC Agent
QNAP warns of critical flaw (CVE-2025-55315) in NetBak PC Agent, letting attackers hijack credentials or bypass security via HTTP smuggling
3 weeks ago
The Cyber ExpressCVE-2025-55315Critical CVE-2025-55315 Hits QNAP NetBak PC Agent
CVE-2025-55315 affects QNAP NetBak PC Agent via an ASP.NET Core flaw, allowing attackers to bypass security and access sensitive backup data.
3 weeks ago
Cyber PressCVE-2025-55315Critical QNAP .NET Flaw Lets Attackers Bypass Security Protections
The vulnerability, tracked as CVE-2025-55315, exploits HTTP Request Smuggling techniques to bypass essential security controls
3 weeks ago
GBHackers NewsCVE-2025-55315Critical QNAP .NET Flaw Lets Attackers Bypass Security Protections
A significant security vulnerability has emerged affecting QNAP's NetBak PC Agent software through a critical flaw in Microsoft ASP.NET Core.
3 weeks ago
theregister.comCVE-2025-59287Microsoft WSUS attacks hit 'multiple' orgs, Google warns
More threat intel teams are sounding the alarm about a critical Windows Server Update Services (WSUS) remote code execution vulnerability, tracked as CVE-2025-59287 and now under active exploitation, just...
3 weeks ago
Unit 42CVE-2025-59287Microsoft WSUS Remote Code Execution (CVE-2025-59287) Actively Exploited in the Wild
CVE-2025-59287 is a critical RCE vulnerability identified in Microsoft’s WSUS. Our observations from cases show a consistent methodology.
3 weeks ago
Arctic WolfCVE-2025-59287Microsoft Releases Emergency Patch for Exploited Critical Remote Code Execution Vulnerability (CVE-2025-59287) - Arctic Wolf
Summary On October 23, 2025, Microsoft released an out-of-band security update for a critical vulnerability tracked as CVE-2025-59287. The flaw stems from the deserialization of untrusted data in Windows Server Update Services (WSUS), which allows remote, unauthenticated threat actors to achieve rem...
3 weeks ago
QNAP warns of critical ASP.NET flaw in its Windows backup software
QNAP warned customers to patch a critical ASP.NET Core vulnerability that also impacts the company's NetBak PC Agent, a Windows utility for backing& up data to a QNAP network-attached storage (NAS) device.
3 weeks ago
QNAP warns of critical ASP.NET flaw in its Windows backup software
QNAP warned customers to patch a critical ASP.NET Core vulnerability that also impacts the company's NetBak PC Agent, a Windows utility for backing& up data to a QNAP network-attached storage (NAS) device.
3 weeks ago
CISA orders feds to patch Windows Server WSUS flaw used in attacks
The Cybersecurity and Infrastructure Security Agency (CISA) ordered U.S. government agencies to patch a critical-severity Windows Server Update Services (WSUS) vulnerability after adding it to its catalog of security flaws exploited in attacks.
3 weeks ago