Microsoft News Articles

Recent news articles refferecing the vendors vulnerabilities.

Researcher Drops New Windows Zero-Day PoC Hours After Microsoft Patch Tuesday

LegacyHive is a PoC for a Windows ProfSvc privilege escalation flaw that works after the July 2026 update, but the public build needs extra credential

6 hours ago

CISA warns admins to patch actively exploited SharePoint flaws

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned Tuesday that attackers are actively exploiting three vulnerabilities to hack Internet-exposed on-premises SharePoint Server instances.

7 hours ago

July Patch RoguePlanet Tuesday Kills Windows Kerberos RC4 Rollback: Service Accounts Face No-Recovery Deadline

July 2026 Patch Tuesday permanently removes the Kerberos RC4 rollback registry key on July 14, leaving service accounts with RC4-only material unable to authenticate. Administrators must also verify

4 days ago

Microsoft Reins in RoguePlanet Zero-Day Threat

The researcher known as "Nightmare-Eclipse" published a proof-of-concept (PoC) exploit for the Windows Defender vulnerability in early June.

6 days ago

ThreatsDay: Cloud Bucket Hijacking, Windows LPE Chain, Global Fraud Bust + 17 More Stories

ThreatsDay Bulletin covers fraud arrests, supply-chain attacks, phishing, cloud hijacking, ransomware, Windows flaws, and AI-driven data exfiltration.

6 days ago

Defender Zero-Day Patched 29 Days After Public Exploit Exposed Millions of PCs

Windows Defender zero-day CVE-2026-50656 — known as RoguePlanet — has been patched by Microsoft 29 days after researcher Nightmare Eclipse published working exploit code granting SYSTEM-level access

6 days ago

Microsoft Releases Patch for RoguePlanet Defender Zero-Day Vulnerability

Microsoft has released security updates for the RoguePlanet zero-day vulnerability in Microsoft Defender.

6 days ago

Microsoft closes book on Nightmare Eclipse's RoguePlanet zero-day

Weeks after the exploit code dropped, Redmond has finally ships a fix for the Defender zero-day

6 days ago

Microsoft releases fix for RoguePlanet Defender flaw (CVE-2026-50656) - Help Net Security

Microsoft has finally released a fix for CVE-2026-50656, the Windows Defender LPE vulnerability triggered by the RoguePlanet exploit.

6 days ago

Microsoft Patches RoguePlanet Defender Flaw That Can Grant SYSTEM Privileges

Microsoft Patches RoguePlanet Defender Flaw That Can Grant SYSTEM Privileges | Read more hacking news on The Hacker News cybersecurity news website and learn how to protect against cyberattacks and software vulnerabilities.

6 days ago

Microsoft Releases Patches for RoguePlanet Defender Zero-Day Vulnerability - IT Security News

Microsoft has released security updates to address a newly disclosed zero-day vulnerability in Microsoft Defender, publicly referred to as “RoguePlanet.” The flaw, tracked as CVE-2026-50656, affects the Microsoft Malware Protection Engine and could allow attackers to gain elevated privileges on…Read...

6 days ago

Microsoft patches RoguePlanet Defender zero-day vulnerability

Microsoft has released a security patch to address a Defender zero-day vulnerability known as

6 days ago

Microsoft Edge Vulnerability Allows Remote Attacker to Execute Arbitrary Code

Microsoft has disclosed a new security vulnerability in Microsoft Edge (Chromium-based) that could allow a remote attacker to execute arbitrary code on affected systems.

1 week ago

SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation

Ravie LakshmananJul 02, 2026Vulnerability / Threat Intelligence

2 weeks ago

SharePoint Server Actively Exploited: CISA Orders Patch Before Ransomware Actors Strike

SharePoint Server vulnerability CVE-2026-45659 is under active exploitation. CISA added the deserialization remote code execution flaw to its Known Exploited Vulnerabilities catalog July 1, giving

2 weeks ago

Armored Likho Targets Government Agencies, Power Sector with BusySnake Stealer

Kaspersky says the attacks use phishing, GitHub-hosted payloads, CVE-2025-9491 LNK abuse, and Go2Tunnel-based tunneling.

2 weeks ago

Microsoft's 'Less Likely' SharePoint Bug Becomes CISA Priority as Exploitation Confirmed

CISA added CVE-2026-45659 to its KEV catalog after confirming active exploitation of a SharePoint Server deserialization flaw. Microsoft had rated real-world abuse less likely when it issued patches in May. The bug allows authenticated attackers with minimal permissions to achieve remote code execut...

2 weeks ago

U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog - IT Security News

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a Microsoft SharePoint Server flaw, tracked as CVE-2026-45659 (CVSS score v3.1 o...

2 weeks ago

Microsoft said exploitation was 'less likely' ... but CISA just added SharePoint RCE to KEV list

Attackers need little more than a valid SharePoint account to execute code on vulnerable on-prem servers

2 weeks ago

US cyber agency warns over forgotten SharePoint flaw | Computer Weekly

An RCE vulnerability in Microsoft SharePoint that was mistakenly omitted from the May Patch Tuesday bulletin is being exploited in the wild, says Cisa.

2 weeks ago

CISA Warns Microsoft SharePoint Flaw Is Actively Exploited

CISA added a Microsoft SharePoint RCE flaw to its exploited bugs catalog after confirming active attacks on unpatched servers.

2 weeks ago

CISA Adds Actively Exploited Microsoft SharePoint Vulnerability to KEV Catalog - IT Security News

The Cybersecurity and Infrastructure Security Agency (CISA) has recently added a newly discovered vulnerability in Microsoft SharePoint Server, tracked as CVE-2026-45659, to its Known Exploited Vulnerabilities (KEV) Catalog. This addition highlights the active exploitation risks present in enterpris...

2 weeks ago

CISA: Microsoft SharePoint RCE flaw now actively exploited

CISA warned on Wednesday that attackers have begun exploiting a high-severity Microsoft SharePoint remote code execution vulnerability patched in May.

2 weeks ago

CISA Warns of Microsoft SharePoint Server Code Execution Vulnerability Exploited in Attacks - IT Security News

CISA has added a newly disclosed Microsoft SharePoint Server vulnerability, tracked as CVE-2026-45659, to its Known Exploited Vulnerabilities (KEV) Catalog, warning that the flaw is actively being exploited in real-world attacks. The vulnerability is a deserialization of untrusted data issue…Read mo...

2 weeks ago

CISA Warns of Microsoft SharePoint Server Code Execution Vulnerability Exploited in Attacks

CISA has added a newly disclosed Microsoft SharePoint Server flaw to its KEV Catalog, warning it is actively exploited in the wild.

2 weeks ago

No more news articles to load.