ARTIKEL SUCHE
Threat Feed QueryDurchsuche alle aggregierten Security-Artikel nach Schlagworten, CVE-IDs und Quellen.
Securing our future: April 2025 progress report on Microsoft’s Secure Future Initiative
<html><body><p>The Microsoft Secure Future Initiative (SFI) stands as the largest cybersecurity engineering project in history and most extensive effort of its kind at Microsoft. Now, we are sharing the second SFI progre
Windows Defender Policies Bypassed Using WinDbg Preview via Microsoft Store
<html><body><p>A significant vulnerability in Windows Defender Application Control (WDAC) implementations, demonstrating how attackers can circumvent strict security policies through Microsoft’s own debugging tool. The
Kimusky Hackers Exploiting RDP & MS Office Vulnerabilities in Targeted Attacks
<html><body><p>A sophisticated Advanced Persistent Threat (APT) operation named Larva-24005, linked to the notorious Kimsuky threat group, has been discovered actively exploiting critical vulnerabilities in Remote Deskto
Widespread Microsoft Entra lockouts tied to new security feature rollout
<html><body><p>Windows administrators from numerous organizations report widespread account lockouts triggered by false positives in the rollout of a new Microsoft Entra ID's "leaked credentials" detection app called MAC
Microsoft Warns of Ransomware Exploiting Cloud Environments with New Techniques
<html><body><p>Microsoft has issued an alert regarding sophisticated ransomware attacks targeting hybrid cloud environments in Q1 2025. These attacks exploit vulnerabilities at the intersection of on-premises infrastruct
Hackers Actively Exploiting Critical Exchange & SharePoint Server Vulnerabilities
<html><body><p>Microsoft has warned organizations worldwide that threat actors are ramping up their exploitation of critical vulnerabilities in on-premises Exchange Server and SharePoint Server. These attacks, observed i
Researchers Uncovered The Stealthy StrelaStealer Malware Tactics, Techniques, and Procedures
<html><body><p>This malicious software specifically targets email credentials from popular clients such as Microsoft Outlook and Mozilla Thunderbird, creating significant security risks for organizations worldwide. The m
U.S. CISA adds Apple products and Microsoft Windows NTLM flaws to its Known Exploited Vulnerabilities catalog
<html><body><p>U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Apple products and Microsoft Windows NTLM flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure S
Microsoft Vulnerabilities Hit Record High With 1,300+ Reported in 2024
<html><body><p>Microsoft’s security landscape faced unprecedented challenges in 2024, with vulnerability reports soaring to an all-time high of 1,360 identified security flaws across the company’s product ecosystem. This
KB5059087 Windows Server 2025 Out-of-Band Update 26100.3781
<html><body><div style="float: center;"></div> <p>Mal kurz informiert: Microsoft hat jetzt auch für Windows Server 2025 ein Out-of-Band Update als KB 5059087 bereitgestellt. Dabei handelt es sich um ein Korrektur-Update
Microsoft’s Secure by Design journey: One year of success
<html><body><p>Read about the initiatives Microsoft has undertaken over the past 18 months to support secure by design, secure by default, and secure in operations objectives as part of our SFI Initiative.</p> <p>The pos
Hackers Weaponize MMC Script to Deploy MysterySnail RAT Malware
<html><body><p>A sophisticated cyberespionage campaign leveraging malicious Microsoft Management Console (MMC) scripts to deploy the stealthy MysterySnail remote access trojan (RAT). First identified in 2021 during an i
Microsoft: Office 2016 and Office 2019 reach end of support in October
<html><body><p>Microsoft has reminded customers that Office 2016 and Office 2019 will reach the end of extended support six months from now, on October 14, 2025. [...]</p></body></html>
Node.js malvertising campaign targets crypto users
<html><body><p>Microsoft warns of a malvertising campaign using Node.js to deliver info-stealing malware via fake crypto trading sites like Binance and TradingView. Microsoft has observed Node.js increasingly used in mal
Beware of Weaponized Amazon Gift Cards That Steals Microsoft Credentials
<html><body><p>Cybercriminals have launched a sophisticated phishing campaign exploiting the popularity of digital gift cards to steal Microsoft credentials from unsuspecting users. This new attack vector disguises malic
Microsoft Edge 137.0.3255.0 im Dev-Kanal
<html><body><div style="float: center;"></div> <p>Mal schnell nachgeholt. Am Dienstagabend hatte Microsoft den Microsoft Edge 137.0.3255.0 zum Download freigegeben. Gestern Abend folgte dann auch endlich die Release Note
New Windows Server emergency updates fix container launch issue
<html><body><p>Microsoft has released emergency Windows Server updates to address a known issue preventing Windows containers from launching. [...]</p></body></html>
Windows 11 24H2 Update Bug Triggers BSOD Error – Emergency Fix Released
<html><body><p>Microsoft has officially confirmed a major bug in its recent Windows 11 24H2 updates that is causing widespread Blue Screen of Death (BSOD) crashes, displaying the stop error code “SECURE_KERNEL_ERROR” (0x
Visual Studio 17.14 Preview 3 mit neuen GitHub Copilot Funktionen und mehr
<html><body><div style="float: center;"></div> <p>Gestern Abend hat Microsoft für das Visual Studio 17.14 die Preview 3 freigegeben. Wie auch in vielen anderen Produkten steigt auch hier der Copilot immer tiefer ein. In
Hackers Weaponize Gamma Tool Via Cloudflare Turnstile to Steal Microsoft Credentials
<html><body><p>Cybersecurity experts have uncovered a sophisticated multi-stage phishing campaign that exploits Gamma, an AI-powered presentation tool, to deliver credential-harvesting attacks targeting Microsoft account