Threat and Vulnerability Intelligence Database

Example Searches:

	Microsoft: Licensing issue blocks Microsoft 365 Family for some users Description: Microsoft is investigating a potential licensing issue blocking access to Microsoft 365 services for some customers with Family subscriptions. [...] Source: BleepingComputer April 10th, 2025 (about 2 months ago)
	Microsoft releases emergency update to fix Office 2016 crashes Description: Microsoft has released an out-of-band Office update to fix a known issue that caused Word, Excel, and Outlook to crash after installing the KB5002700 security update for Office 2016. [...] Source: BleepingComputer April 10th, 2025 (about 2 months ago)
	Malicious npm Package Targets Atomic Wallet, Exodus Users by Swapping Crypto Addresses Description: Threat actors are continuing to upload malicious packages to the npm registry so as to tamper with already-installed local versions of legitimate libraries and execute malicious code in what's seen as a sneakier attempt to stage a software supply chain attack. The newly discovered package, named pdf-to-office, masquerades as a utility for converting PDF files to Microsoft Word documents. But, in Source: TheHackerNews April 10th, 2025 (about 2 months ago)
	Windows 11 April update unexpectedly creates new 'inetpub' folder Description: Microsoft's April 2025 Patch Tuesday updates are strangely creating an empty "inetpub" folder in the root of the C:\ drive, even on systems that do not have Internet Information Services (IIS) installed. [...] Source: BleepingComputer April 9th, 2025 (about 2 months ago)
	Microsoft investigates global Exchange Admin Center outage Description: Microsoft is investigating an ongoing outage that is blocking admins worldwide from accessing the Exchange Admin Center (EAC). [...] Source: BleepingComputer April 9th, 2025 (about 2 months ago)
	Microsoft: April 2025 updates break Windows Hello on some PCs Description: Microsoft says some Windows users might be unable to log into their accounts via Windows Hello after installing the April 2025 security updates. [...] Source: BleepingComputer April 9th, 2025 (about 2 months ago)
	Google's got a hot cloud security startup, a new unified platform — and its eye on Microsoft's $20B+ security biz Source: TheRegister April 9th, 2025 (about 2 months ago)
	PipeMagic Trojan Exploits Windows Zero-Day Vulnerability to Deploy Ransomware Description: Microsoft has revealed that a now-patched security flaw impacting the Windows Common Log File System (CLFS) was exploited as a zero-day in ransomware attacks aimed at a small number of targets. "The targets include organizations in the information technology (IT) and real estate sectors of the United States, the financial sector in Venezuela, a Spanish software company, and the retail sector in Source: TheHackerNews April 9th, 2025 (about 2 months ago)
	Microsoft Patches 126 Flaws Including Actively Exploited Windows CLFS Vulnerability 🚨 Marked as known exploited on April 10th, 2025 (about 2 months ago). Description: Microsoft has released security fixes to address a massive set of 126 flaws affecting its software products, including one vulnerability that it said has been actively exploited in the wild. Of the 126 vulnerabilities, 11 are rated Critical, 112 are rated Important, and two are rated Low in severity. Forty-nine of these vulnerabilities are classified as privilege escalation, 34 as remote code Source: TheHackerNews April 9th, 2025 (about 2 months ago)
	Microsoft Drops Another Massive Patch Update Description: A threat actor has already exploited one of the flaws in a ransomware campaign with victims in the US and other countries. Source: Dark Reading April 8th, 2025 (about 2 months ago)