Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Microsoft links recent Microsoft 365 outage to buggy update
Description: ​Microsoft says a coding issue is behind a now-resolved Microsoft 365 outage over the weekend that affected Outlook and Exchange Online authentication. [...]
Source: BleepingComputer
March 3rd, 2025 (about 2 months ago)

CVE-2025-0289
Hackers Exploit Paragon Partition Manager Driver Vulnerability in Ransomware Attacks
Description: Threat actors have been exploiting a security vulnerability in Paragon Partition Manager's BioNTdrv.sys driver in ransomware attacks to escalate privileges and execute arbitrary code. The zero-day flaw (CVE-2025-0289) is part of a set of five vulnerabilities that was discovered by Microsoft, according to the CERT Coordination Center (CERT/CC). "These include arbitrary kernel memory mapping and

EPSS Score: 0.05%

Source: TheHackerNews
March 3rd, 2025 (about 2 months ago)
Hackers Use ClickFix Trick to Deploy PowerShell-Based Havoc C2 via SharePoint Sites
Description: Cybersecurity researchers are calling attention to a new phishing campaign that employs the ClickFix technique to deliver an open-source command-and-control (C2) framework called Havoc. "The threat actor hides each malware stage behind a SharePoint site and uses a modified version of Havoc Demon in conjunction with the Microsoft Graph API to obscure C2 communications within trusted, well-known
Source: TheHackerNews
March 3rd, 2025 (about 2 months ago)
Microsoft unveils finalized EU Data Boundary as European doubt over US grows
Source: TheRegister
March 3rd, 2025 (about 2 months ago)
Ransomware gangs exploit Paragon Partition Manager bug in BYOVD attacks
Description: Microsoft had discovered five Paragon Partition Manager BioNTdrv.sys driver flaws, with one used by ransomware gangs in zero-day attacks to gain SYSTEM privileges in Windows. [...]
Source: BleepingComputer
March 1st, 2025 (about 2 months ago)
Microsoft Busts Hackers Selling Illegal Azure AI Access
Description: LLMjacking operation leveraged illicit access GenAI services to produce explicit celebrity images and other harmful content, Microsoft's digital crimes unit says.
Source: Dark Reading
February 28th, 2025 (about 2 months ago)
End of the Line for Skype, Microsoft to Pull the Plug in May
Description: Microsoft has announced that Skype will be officially discontinued on May 5, 2025, marking the end of the once-dominant VoIP and messaging platform. Users will have the option to migrate their contacts, messages, and call logs to the free version of Microsoft Teams or export their data before the shutdown. The decision to retire Skype … The post End of the Line for Skype, Microsoft to Pull the Plug in May appeared first on CyberInsider.
Source: CyberInsider
February 28th, 2025 (about 2 months ago)
Microsoft confirms it's killing off Skype in May, after 14 years
Description: Microsoft has confirmed that the Skype video call and messaging service will be shut down in May, 14 years after replacing the Windows Live Messenger. [...]
Source: BleepingComputer
February 28th, 2025 (about 2 months ago)
RDP: a Double-Edged Sword for IT Teams – Essential Yet Exploitable
Description: Remote Desktop Protocol (RDP) is an amazing technology developed by Microsoft that lets you access and control another computer over a network. It’s like having your office computer with you wherever you go. For businesses, this means IT staff can manage systems remotely, and employees can work from home or anywhere, making RDP a true game-changer in today’s work environment. But here’s the
Source: TheHackerNews
February 28th, 2025 (about 2 months ago)
Microsoft names alleged credential-snatching 'Azure Abuse Enterprise' operators
Source: TheRegister
February 28th, 2025 (about 2 months ago)