Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
|
Description: Microsoft has released ad-supported versions of its Office desktop apps, which have limited features but allow Windows users to edit their documents for free. [...]
February 24th, 2025 (about 2 months ago)
|
|
|
Description: A massive botnet of over 130,000 compromised devices is conducting password-spray attacks against Microsoft 365 (M365) accounts worldwide, attempting to confirm credentials. [...]
February 24th, 2025 (about 2 months ago)
|
|
|
Description: Protecting identities has become a top priority for security teams. However, many organizations remain exposed due to blind spots caused by identity sprawl and misplaced trust in identity providers. This blog explores why traditional security measures fall short, how AI-driven attackers are escalating identity threats, and why a proactive, identity-first approach is the only way forward.The identity security game has changed—not just because attackers are inventing new exploits, but because we’ve unintentionally made their job easier. Identity sprawl has opened the doors wide, effectively giving attackers their own “golden ticket” —pun intended— to target what is arguably an organization’s most valuable asset: its identities. Remember when an employee only needed one corporate login and a handful of permissions to access the applications and resources they needed to get their job done? Today, every worker, contractor, service account and even every IoT device is entangled in a complex web of permissions spread across multiple identity providers (IDPs), spanning directory services, such as Microsoft’s Active Directory (AD) and Entra ID; cloud services; SaaS apps; and remote access tools. The rise of IoT has further compounded this challenge by introducing machine identities that seamlessly interact across these environments, increasing both operational complexity and security risks.Identity sprawl is now a major challenge for organizations, with 57% of security professional...
February 24th, 2025 (about 2 months ago)
|
|
|
February 21st, 2025 (about 2 months ago)
|
|
|
February 20th, 2025 (about 2 months ago)
|
|
|
Description: Microsoft has issued a security bulletin for a high-severity elevation of privilege vulnerability in Power Pages, which hackers exploited as a zero-day in attacks. [...]
February 20th, 2025 (about 2 months ago)
|
|
|
Description: Microsoft has announced Majorana 1, the world’s first quantum processing unit (QPU) built with topological qubits, marking a major leap toward fault-tolerant quantum computing. The breakthrough, supported by research published in Nature, leverages a novel material called a topoconductor, allowing for more stable, scalable, and error-resistant quantum systems. The announcement highlights Microsoft’s progress toward a …
The post Microsoft Unveils First Quantum Processor With Topological Qubits appeared first on CyberInsider.
February 20th, 2025 (about 2 months ago)
|
|
|
Description: Microsoft is not testing a fix for a longstanding known issue that is breaking SSH connections on some Windows 11 22H2 and 23H2 systems. [...]
February 20th, 2025 (about 2 months ago)
|
|
|
Description: For decades, Microsoft Exchange has been the backbone of business communications, powering emailing, scheduling and collaboration for organizations worldwide. Whether deployed on-premises or in hybrid environments, companies of all sizes rely on Exchange for seamless internal and external communication, often integrating it deeply with their workflows, compliance policies and security frameworks
February 20th, 2025 (about 2 months ago)
|
|
|
Description: A Threat Actor Claims to be Selling Access to SMTP Spammers Database Through Microsoft Graph API
February 19th, 2025 (about 2 months ago)
|