CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
NightEagle APT Exploits Microsoft Exchange Flaw to Target China's Military and Tech Sectors
Description: Cybersecurity researchers have shed light on a previously undocumented threat actor called NightEagle (aka APT-Q-95) that has been observed targeting Microsoft Exchange servers as a part of a zero-day exploit chain designed to target government, defense, and technology sectors in China. According to QiAnXin's RedDrip Team, the threat actor has been active since 2023 and has switched network
Source: TheHackerNews
July 4th, 2025 (1 day ago)
Microsoft Windows Firewall complains about Microsoft code
Source: TheRegister
July 3rd, 2025 (2 days ago)
Microsoft investigates ongoing SharePoint Online access issues
Description: ​Microsoft is investigating an ongoing incident causing intermittent issues for users attempting to access SharePoint Online sites. [...]
Source: BleepingComputer
July 3rd, 2025 (3 days ago)
Microsoft shuts down 3,000 email accounts created by North Korean IT workers
Description: Microsoft said it has spent years monitoring North Korea’s campaign to get its citizens hired in IT roles at U.S. companies and recently saw changes in how the campaign operates.
Source: The Record
July 3rd, 2025 (3 days ago)
Attackers Impersonate Top Brands in Callback Phishing
Description: Microsoft, PayPal, Docusign, and others are among the trusted brands threat actors use in socially engineered scams that try to get victims to call adversary-controlled phone numbers.
Source: Dark Reading
July 3rd, 2025 (3 days ago)
Microsoft: Exchange Server Subscription Edition now available
Description: Microsoft has announced that the Exchange Server Subscription Edition (SE) is now available to all customers of its enterprise email service. [...]
Source: BleepingComputer
July 3rd, 2025 (3 days ago)
Microsoft asks users to ignore Windows Firewall config errors
Description: Microsoft asked customers this week to disregard incorrect Windows Firewall errors that appear after rebooting their systems following the installation of the June 2025 preview update. [...]
Source: BleepingComputer
July 3rd, 2025 (3 days ago)
Call of Duty: WWII Game Pass Launch Stained by Reports of RCE Attacks
Description: Several Call of Duty: WWII players on PC are reporting being hacked mid-game via a Remote Code Execution (RCE) exploit, just days after the title was added to Microsoft’s Game Pass lineup. The reports suggest that attackers are able to remotely run code on victims’ machines during gameplay, raising serious concerns about the security of … The post Call of Duty: WWII Game Pass Launch Stained by Reports of RCE Attacks appeared first on CyberInsider.
Source: CyberInsider
July 3rd, 2025 (3 days ago)

CVE-2025-6554
Google Chromium V8 Type Confusion Vulnerability
Description: Google Chromium V8 contains a type confusion vulnerability that could allow a remote attacker to perform arbitrary read/write via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

EPSS Score: 6.19%

Source: CISA KEV
July 2nd, 2025 (3 days ago)
Microsoft fixes ‘Print to PDF’ feature broken by Windows update
Description: Microsoft has fixed a known bug that breaks the 'Print to PDF' feature on Windows 11 24H2 systems after installing the April 2025 preview update. [...]
Source: BleepingComputer
July 2nd, 2025 (4 days ago)