Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Microsoft confirms it's killing off Skype in May, after 14 years
Description: Microsoft has confirmed that the Skype video call and messaging service will be shut down in May, 14 years after replacing the Windows Live Messenger. [...]
Source: BleepingComputer
February 28th, 2025 (about 2 months ago)
RDP: a Double-Edged Sword for IT Teams – Essential Yet Exploitable
Description: Remote Desktop Protocol (RDP) is an amazing technology developed by Microsoft that lets you access and control another computer over a network. It’s like having your office computer with you wherever you go. For businesses, this means IT staff can manage systems remotely, and employees can work from home or anywhere, making RDP a true game-changer in today’s work environment. But here’s the
Source: TheHackerNews
February 28th, 2025 (about 2 months ago)
Microsoft names alleged credential-snatching 'Azure Abuse Enterprise' operators
Source: TheRegister
February 28th, 2025 (about 2 months ago)
Microsoft Rolls Out Fresh Outlook Fix After Faulty Windows Update
Description: Windows 11 users can deploy a workaround or await the update rollout.
Source: Dark Reading
February 27th, 2025 (about 2 months ago)
Microsoft names cybercriminals behind AI deepfake network
Description: Microsoft has named multiple threat actors part of a cybercrime gang accused of developing malicious tools capable of bypassing generative AI guardrails to generate celebrity deepfakes and other illicit content. [...]
Source: BleepingComputer
February 27th, 2025 (about 2 months ago)
Microsoft fixes Outlook drag-and-drop broken by Windows updates
Description: ​Microsoft has fixed a known issue that broke email and calendar drag-and-drop in classic Outlook after installing recent updates on Windows 24H2 systems. [...]
Source: BleepingComputer
February 27th, 2025 (about 2 months ago)
VSCode extensions with 9 million installs pulled over security risks
Description: Microsoft has removed two popular VSCode extensions, 'Material Theme - Free' and  'Material Theme Icons - Free,' from the Visual Studio Marketplace for allegedly containing malicious code. [...]
Source: BleepingComputer
February 26th, 2025 (about 2 months ago)
Windows 11 KB5052093 update released with 33 changes and fixes
Description: Microsoft has released the February 2025 preview cumulative update for Windows 11 24H2, with 33 improvements and fixes for multiple issues, including SSH and File Explorer bugs and the volume jumping to 100% when waking the PC from sleep. [...]
Source: BleepingComputer
February 26th, 2025 (about 2 months ago)
Windows 11 24H2 upgrades now blocked for some AutoCAD users
Description: Microsoft has introduced a new Windows 11 24H2 upgrade block for systems with AutoCAD 2022, addressing compatibility issues that prevent the program from launching. [...]
Source: BleepingComputer
February 26th, 2025 (about 2 months ago)

CVE-2024-49035
CISA Adds Microsoft and Zimbra Flaws to KEV Catalog Amid Active Exploitation
Description: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday placed two security flaws impacting Microsoft Partner Center and Synacor Zimbra Collaboration Suite (ZCS) to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerabilities in question are as follows - CVE-2024-49035 (CVSS score: 8.7) - An improper access control

CVSS: HIGH (8.7)

Source: TheHackerNews
February 26th, 2025 (about 2 months ago)