Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Microsoft April 2025 Patch Tuesday fixes exploited zero-day, 134 flaws
🚨 Marked as known exploited on April 10th, 2025 (9 days ago).
Description: Today is Microsoft's April 2025 Patch Tuesday, which includes security updates for 134 flaws, including one actively exploited zero-day vulnerability. [...]
Source: BleepingComputer
April 8th, 2025 (11 days ago)
Windows 11 KB5055523 & KB5055528 cumulative updates released
Description: Microsoft has released Windows 11 KB5055523 and KB5055528 cumulative updates for versions 24H2 and 23H2 to fix security vulnerabilities and issues. [...]
Source: BleepingComputer
April 8th, 2025 (11 days ago)
Windows 10 KB5055518 update fixes random text when printing
Description: Microsoft has released the KB5055518 cumulative update for Windows 10 22H2 and Windows 10 21H2, with nine changes or fixes. [...]
Source: BleepingComputer
April 8th, 2025 (11 days ago)

CVE-2025-29824
Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability
Description: Microsoft Windows Common Log File System (CLFS) Driver contains a use-after-free vulnerability that allows an authorized attacker to elevate privileges locally.

EPSS Score: 4.44%

Source: CISA KEV
April 8th, 2025 (11 days ago)
Cryptocurrency Miner and Clipper Malware Spread via SourceForge Cracked Software Listings
Description: Threat actors have been observed distributing malicious payloads such as cryptocurrency miner and clipper malware via SourceForge, a popular software hosting service, under the guise of cracked versions of legitimate applications like Microsoft Office. "One such project, officepackage, on the main website sourceforge.net, appears harmless enough, containing Microsoft Office add-ins copied from a
Source: TheHackerNews
April 8th, 2025 (11 days ago)
EncryptHub's dual life: Cybercriminal vs Windows bug-bounty researcher
Description: EncryptHub, a notorious threat actor linked to breaches at 618 organizations, is believed to have reported two Windows zero-day vulnerabilities to Microsoft, revealing a conflicted figure straddling the line between cybercrime and security research. [...]
Source: BleepingComputer
April 7th, 2025 (11 days ago)
Microsoft delays WSUS driver sync deprecation indefinitely
Description: Microsoft announced today that, based on customer feedback, it will indefinitely delay removing driver synchronization in Windows Server Update Services (WSUS). [...]
Source: BleepingComputer
April 7th, 2025 (12 days ago)
Malicious VSCode extensions infect Windows with cryptominers
Description: Nine VSCode extensions on Microsoft's Visual Studio Code Marketplace pose as legitimate development tools while infecting users with the XMRig cryptominer to mine Ethereum and Monero. [...]
Source: BleepingComputer
April 7th, 2025 (12 days ago)
Windows 11 24H2 blocked on PCs with code-obfuscation driver BSODs
Description: Microsoft has introduced a new Windows 11 24H2 safeguard hold for systems running security or enterprise software using SenseShield Technology's sprotect.sys driver. [...]
Source: BleepingComputer
April 7th, 2025 (12 days ago)
Microsoft Credits EncryptHub, Hacker Behind 618+ Breaches, for Disclosing Windows Flaws
Description: A likely lone wolf actor behind the EncryptHub persona was acknowledged by Microsoft for discovering and reporting two security flaws in Windows last month, painting a picture of a "conflicted" individual straddling a legitimate career in cybersecurity and pursuing cybercrime. In a new extensive analysis published by Outpost24 KrakenLabs, the Swedish security company unmasked the up-and-coming
Source: TheHackerNews
April 5th, 2025 (14 days ago)