Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Multiple Groups Exploit NTLM Flaw in Microsoft Windows
Description: The attacks have been going on since shortly after Microsoft patched the vulnerability in March.
Source: Dark Reading
April 16th, 2025 (about 2 months ago)
Microsoft: Node.js Increasingly Used for Malware Delivery and Data Theft
Description: Microsoft has issued a warning about a surge in cyberattacks leveraging Node.js to deliver malware and steal sensitive information. Since October 2024, its Defender Experts team has observed multiple campaigns using Node.js in novel ways to evade detection and persist in compromised environments. The findings come from a detailed analysis by Microsoft's Defender for Endpoint … The post Microsoft: Node.js Increasingly Used for Malware Delivery and Data Theft appeared first on CyberInsider.
Source: CyberInsider
April 16th, 2025 (about 2 months ago)
Gamma AI Platform Abused in Phishing Chain to Spoof Microsoft SharePoint Logins
Description: Threat actors are leveraging an artificial intelligence (AI) powered presentation platform named Gamma in phishing attacks to direct unsuspecting users to spoofed Microsoft login pages. "Attackers weaponize Gamma, a relatively new AI-based presentation tool, to deliver a link to a fraudulent Microsoft SharePoint login portal," Abnormal Security researchers Hinman Baron and Piotr Wojtyla said in
Source: TheHackerNews
April 16th, 2025 (about 2 months ago)
Microsoft warns of blue screen crashes caused by April updates
Description: Microsoft warned customers this week that their systems might crash with a blue screen error caused by a secure kernel fatal error after installing Windows updates released since March. [...]
Source: BleepingComputer
April 16th, 2025 (about 2 months ago)
Microsoft: Some devices offered Windows 11 upgrades despite Intune blocks
Description: Microsoft is working to fix an ongoing issue causing some users' Windows devices to be offered Windows 11 upgrades despite Intune policies preventing them. [...]
Source: BleepingComputer
April 16th, 2025 (about 2 months ago)
Microsoft blocks ActiveX by default in Microsoft 365, Office 2024
Description: Microsoft announced it will begin disabling all ActiveX controls in Windows versions of Microsoft 365 and Office 2024 applications later this month. [...]
Source: BleepingComputer
April 15th, 2025 (about 2 months ago)
Microsoft: Exchange 2016 and 2019 reach end of support in six months
Description: ​Microsoft warned that Exchange 2016 and Exchange 2019 will reach the end of support six months from now, on October 14. [...]
Source: BleepingComputer
April 15th, 2025 (about 2 months ago)
Microsoft warns of CPU spikes when typing in classic Outlook
Description: Microsoft warned Windows users of increased CPU usage when typing while using recent versions of the classic Outlook email client. [...]
Source: BleepingComputer
April 15th, 2025 (about 2 months ago)
ActiveX blocked by default in Microsoft 365 because remote code execution is bad, OK?
Source: TheRegister
April 15th, 2025 (about 2 months ago)
Microsoft tells Windows users to ignore 0x80070643 WinRE errors
Description: Microsoft says some users might see 0x80070643 installation failures when trying to deploy the April 2025 Windows Recovery Environment (WinRE) updates. [...]
Source: BleepingComputer
April 14th, 2025 (about 2 months ago)