Microsoft News Articles
Recent news articles refferecing the vendors vulnerabilities.
Researcher Drops New Windows Zero-Day PoC Hours After Microsoft Patch Tuesday
LegacyHive is a PoC for a Windows ProfSvc privilege escalation flaw that works after the July 2026 update, but the public build needs extra credential
6 hours ago
CISA warns admins to patch actively exploited SharePoint flaws
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned Tuesday that attackers are actively exploiting three vulnerabilities to hack Internet-exposed on-premises SharePoint Server instances.
7 hours ago
July Patch RoguePlanet Tuesday Kills Windows Kerberos RC4 Rollback: Service Accounts Face No-Recovery Deadline
July 2026 Patch Tuesday permanently removes the Kerberos RC4 rollback registry key on July 14, leaving service accounts with RC4-only material unable to authenticate. Administrators must also verify
4 days ago
Microsoft Reins in RoguePlanet Zero-Day Threat
The researcher known as "Nightmare-Eclipse" published a proof-of-concept (PoC) exploit for the Windows Defender vulnerability in early June.
6 days ago
ThreatsDay: Cloud Bucket Hijacking, Windows LPE Chain, Global Fraud Bust + 17 More Stories
ThreatsDay Bulletin covers fraud arrests, supply-chain attacks, phishing, cloud hijacking, ransomware, Windows flaws, and AI-driven data exfiltration.
6 days ago
Defender Zero-Day Patched 29 Days After Public Exploit Exposed Millions of PCs
Windows Defender zero-day CVE-2026-50656 — known as RoguePlanet — has been patched by Microsoft 29 days after researcher Nightmare Eclipse published working exploit code granting SYSTEM-level access
6 days ago
Microsoft Releases Patch for RoguePlanet Defender Zero-Day Vulnerability
Microsoft has released security updates for the RoguePlanet zero-day vulnerability in Microsoft Defender.
6 days ago

Microsoft closes book on Nightmare Eclipse's RoguePlanet zero-day
Weeks after the exploit code dropped, Redmond has finally ships a fix for the Defender zero-day
6 days ago
Microsoft releases fix for RoguePlanet Defender flaw (CVE-2026-50656) - Help Net Security
Microsoft has finally released a fix for CVE-2026-50656, the Windows Defender LPE vulnerability triggered by the RoguePlanet exploit.
6 days ago
Microsoft Patches RoguePlanet Defender Flaw That Can Grant SYSTEM Privileges
Microsoft Patches RoguePlanet Defender Flaw That Can Grant SYSTEM Privileges | Read more hacking news on The Hacker News cybersecurity news website and learn how to protect against cyberattacks and software vulnerabilities.
6 days ago
Microsoft Releases Patches for RoguePlanet Defender Zero-Day Vulnerability - IT Security News
Microsoft has released security updates to address a newly disclosed zero-day vulnerability in Microsoft Defender, publicly referred to as “RoguePlanet.” The flaw, tracked as CVE-2026-50656, affects the Microsoft Malware Protection Engine and could allow attackers to gain elevated privileges on…Read...
6 days ago
Microsoft patches RoguePlanet Defender zero-day vulnerability
Microsoft has released a security patch to address a Defender zero-day vulnerability known as
6 days ago
Microsoft Edge Vulnerability Allows Remote Attacker to Execute Arbitrary Code
Microsoft has disclosed a new security vulnerability in Microsoft Edge (Chromium-based) that could allow a remote attacker to execute arbitrary code on affected systems.
1 week ago

SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation
Ravie LakshmananJul 02, 2026Vulnerability / Threat Intelligence
2 weeks ago
SharePoint Server Actively Exploited: CISA Orders Patch Before Ransomware Actors Strike
SharePoint Server vulnerability CVE-2026-45659 is under active exploitation. CISA added the deserialization remote code execution flaw to its Known Exploited Vulnerabilities catalog July 1, giving
2 weeks ago
Armored Likho Targets Government Agencies, Power Sector with BusySnake Stealer
Kaspersky says the attacks use phishing, GitHub-hosted payloads, CVE-2025-9491 LNK abuse, and Go2Tunnel-based tunneling.
2 weeks ago
Microsoft's 'Less Likely' SharePoint Bug Becomes CISA Priority as Exploitation Confirmed
CISA added CVE-2026-45659 to its KEV catalog after confirming active exploitation of a SharePoint Server deserialization flaw. Microsoft had rated real-world abuse less likely when it issued patches in May. The bug allows authenticated attackers with minimal permissions to achieve remote code execut...
2 weeks ago
U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog - IT Security News
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a Microsoft SharePoint Server flaw, tracked as CVE-2026-45659 (CVSS score v3.1 o...
2 weeks ago
Microsoft said exploitation was 'less likely' ... but CISA just added SharePoint RCE to KEV list
Attackers need little more than a valid SharePoint account to execute code on vulnerable on-prem servers
2 weeks ago
US cyber agency warns over forgotten SharePoint flaw | Computer Weekly
An RCE vulnerability in Microsoft SharePoint that was mistakenly omitted from the May Patch Tuesday bulletin is being exploited in the wild, says Cisa.
2 weeks ago
CISA Warns Microsoft SharePoint Flaw Is Actively Exploited
CISA added a Microsoft SharePoint RCE flaw to its exploited bugs catalog after confirming active attacks on unpatched servers.
2 weeks ago
CISA Adds Actively Exploited Microsoft SharePoint Vulnerability to KEV Catalog - IT Security News
The Cybersecurity and Infrastructure Security Agency (CISA) has recently added a newly discovered vulnerability in Microsoft SharePoint Server, tracked as CVE-2026-45659, to its Known Exploited Vulnerabilities (KEV) Catalog. This addition highlights the active exploitation risks present in enterpris...
2 weeks ago
CISA: Microsoft SharePoint RCE flaw now actively exploited
CISA warned on Wednesday that attackers have begun exploiting a high-severity Microsoft SharePoint remote code execution vulnerability patched in May.
2 weeks ago
CISA Warns of Microsoft SharePoint Server Code Execution Vulnerability Exploited in Attacks - IT Security News
CISA has added a newly disclosed Microsoft SharePoint Server vulnerability, tracked as CVE-2026-45659, to its Known Exploited Vulnerabilities (KEV) Catalog, warning that the flaw is actively being exploited in real-world attacks. The vulnerability is a deserialization of untrusted data issue…Read mo...
2 weeks ago
CISA Warns of Microsoft SharePoint Server Code Execution Vulnerability Exploited in Attacks
CISA has added a newly disclosed Microsoft SharePoint Server flaw to its KEV Catalog, warning it is actively exploited in the wild.
2 weeks ago
