Microsoft

June 2025 Patch Tuesday: Microsoft Fixes 66 Bugs, Including Active Zero-Day

3 minute read

June 2025 Patch Tuesday: Microsoft Fixes 66 Bugs, Including Active 0-Day

June 2025 Patch Tuesday fixes 66 bugs, including a zero-day in WebDAV. Update Windows, Office, and more now to block active threats.

byWaqas

June 10, 2025

3 minute read

OneDrive File Picker Flaw Gives Apps Full Access to User Drives

A recent investigation by cybersecurity researchers at Oasis Security has revealed a data overreach in how Microsoft’s OneDrive…

byWaqas

May 28, 2025

3 minute read

Microsoft Entra Design Lets Guest Users Gain Azure Control, Researchers Say

Researchers reveal how guest accounts with billing roles can create Azure subscriptions inside external tenants, gaining unexpected Owner access and opening hidden privilege risks.

byWaqas

May 28, 2025

2 minute read

BadSuccessor Exploits Windows Server 2025 Flaw for Full AD Takeover

Akamai researchers reveal a critical flaw in Windows Server 2025 dMSA feature that allows attackers to compromise any…

byDeeba Ahmed

May 23, 2025

2 minute read

Legacy Login in Microsoft Entra ID Exploited to Breach Cloud Accounts

A flaw in Microsoft Entra ID’s legacy login allowed attackers to bypass MFA, targeting admin accounts across finance,…

byDeeba Ahmed

May 9, 2025

Entra ID Users Locked Out After MACE App Flags Legitimate Accounts

3 minute read

Microsoft Entra ID Lockouts After MACE App Flags Legit Users

Was your Microsoft Entra ID account locked? Find out about the recent widespread lockouts caused by the new…

byDeeba Ahmed

April 22, 2025

3 minute read

11 Nation-State Hackers Exploit Unpatched Windows Flaw Since 2017

Microsoft refuses to patch serious Windows shortcut vulnerability abused in global espionage campaigns!

byWaqas

March 19, 2025

3 minute read

New Microsoft 365 Phishing Scam Tricks Users Into Calling Fake Support

New Microsoft 365 phishing scam exploits fake support numbers to steal credentials. Learn how attackers bypass security and how to stay protected.

byWaqas

March 14, 2025

4 minute read

March 2025 Patch Tuesday: Microsoft Fixes 57 Vulnerabilities, 7 Zero-Days

Microsoft's March 2025 Patch Tuesday fixes six actively exploited zero-day vulnerabilities, including critical RCE and privilege escalation flaws. Learn how these vulnerabilities impact Windows systems and why immediate patching is essential.

byDeeba Ahmed

March 12, 2025

Microsoft Warns of BadPilot Campaign as Seashell Blizzard Targets US and UK

3 minute read

Microsoft Uncovers ‘BadPilot’ Campaign as Seashell Blizzard Targets US and UK

Russian GRU-linked hackers exploit known software flaws to breach critical networks worldwide, targeting the United States and the…

byWaqas

February 13, 2025

The Latest

Anubis Ransomware Lists Disneyland Paris as New Victim

New Detection Method Uses Hackers’ Own Jitter Patterns Against Them

Hackers Use Social Engineering to Target Expert on Russian Operations

New Mocha Manakin Malware Deploys NodeInitRAT via Clickfix Attack

June 2025 Patch Tuesday: Microsoft Fixes 66 Bugs, Including Active 0-Day

OneDrive File Picker Flaw Gives Apps Full Access to User Drives

Microsoft Entra Design Lets Guest Users Gain Azure Control, Researchers Say

BadSuccessor Exploits Windows Server 2025 Flaw for Full AD Takeover

Legacy Login in Microsoft Entra ID Exploited to Breach Cloud Accounts

Microsoft Entra ID Lockouts After MACE App Flags Legit Users

11 Nation-State Hackers Exploit Unpatched Windows Flaw Since 2017

New Microsoft 365 Phishing Scam Tricks Users Into Calling Fake Support

March 2025 Patch Tuesday: Microsoft Fixes 57 Vulnerabilities, 7 Zero-Days

Microsoft Uncovers ‘BadPilot’ Campaign as Seashell Blizzard Targets US and UK

Halo Security Honored with 2025 MSP Today Product of the Year Award

Arsen Launches AI-Powered Vishing Simulation to Help Organizations Combat Voice Phishing at Scale

Seraphic Security Unveils BrowserTotal™ – Free AI-Powered Browser Security Assessment for Enterprises

Aembit Extends Workload IAM to Microsoft Ecosystem, Securing Hybrid Access for Non-Human Identities

Flowable’s Smart Automation Tools Are Reshaping How Enterprises Operate in 2025