Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Microsoft Rings in 2025 With Record Security Update
Description: Company has issued patches for an unprecedented 159 CVEs, including eight zero-days, three of which attackers are already exploiting.
Source: Dark Reading
January 14th, 2025 (3 months ago)
January Windows updates may fail if Citrix SRA is installed
Description: Microsoft is warning that the January 2025 Windows 11 and Windows 10 cumulative updates may fail if Citrix Session Recording Agent (SRA) version 2411 is installed on the device. [...]
Source: BleepingComputer
January 14th, 2025 (3 months ago)
Microsoft Patch Tuesday for January 2025 — Snort rules and prominent vulnerabilities
Description: Microsoft has released its monthly security update for January of 2025 which includes 159 vulnerabilities, including 10 that Microsoft marked as “critical.” The remaining vulnerabilities listed are classified as “important.” 
Source: Cisco Talos Blog
January 14th, 2025 (3 months ago)
Windows January 2025 Patch Tuesday Fixes 159 Vulnerabilities
Description: Microsoft's January 2025 Patch Tuesday update addresses 159 vulnerabilities, including three previously undisclosed actively exploited zero-day vulnerabilities. The update is applicable to Windows 11 OS Builds 22621.4751 and 22631.4751 and is part of Microsoft's ongoing effort to secure its flagship operating system against emerging threats. New zero-day flaws Microsoft has confirmed three vulnerabilities under active … The post Windows January 2025 Patch Tuesday Fixes 159 Vulnerabilities appeared first on CyberInsider.
Source: CyberInsider
January 14th, 2025 (3 months ago)
Windows 10 KB5049981 update released with new BYOVD blocklist
Description: Microsoft has released the KB5049981 cumulative update for Windows 10 22H2 and Windows 10 21H2, which contains an updated Kernel driver blocklist to prevent Bring Your Own Vulnerable Driver (BYOVD) attacks. [...]
Source: BleepingComputer
January 14th, 2025 (3 months ago)
Microsoft January 2025 Patch Tuesday fixes 8 zero-days, 159 flaws
Description: Today is Microsoft's January 2025 Patch Tuesday, which includes security updates for 159 flaws, including eight zero-day vulnerabilities, with three actively exploited in attacks. [...]
Source: BleepingComputer
January 14th, 2025 (3 months ago)
Windows 11 KB5050009 & KB5050021 cumulative updates released
Description: Microsoft has released the Windows 11 KB5050009 and KB5050021 cumulative updates for versions 24H2 and 23H2 to fix security vulnerabilities and issues. [...]
Source: BleepingComputer
January 14th, 2025 (3 months ago)

CVE-2024-44243
Microsoft Uncovers macOS Vulnerability CVE-2024-44243 Allowing Rootkit Installation
Description: Microsoft has shed light on a now-patched security flaw impacting Apple macOS that, if successfully exploited, could have allowed an attacker running as "root" to bypass the operating system's System Integrity Protection (SIP) and install malicious kernel drivers by loading third-party kernel extensions. The vulnerability in question is CVE-2024-44243 (CVSS score: 5.5), a medium-severity bug

EPSS Score: 0.05%

Source: TheHackerNews
January 14th, 2025 (3 months ago)
Hackers use FastHTTP in new high-speed Microsoft 365 password attacks
Description: Threat actors are utilizing the FastHTTP Go library to launch high-speed brute-force password attacks targeting Microsoft 365 accounts globally. [...]
Source: BleepingComputer
January 14th, 2025 (3 months ago)
Microsoft 365 apps crash on Windows Server after Office update
Description: ​Microsoft says a known issue is causing Classic Outlook and Microsoft 365 applications to crash on Windows Server 2016 or Windows Server 2019 systems. [...]
Source: BleepingComputer
January 14th, 2025 (3 months ago)