Threat and Vulnerability Intelligence Database

Example Searches:

	Microsoft Warns of StilachiRAT: A Stealthy RAT Targeting Credentials and Crypto Wallets Description: Microsoft is calling attention to a novel remote access trojan (RAT) named StilachiRAT that it said employs advanced techniques to sidestep detection and persist within target environments with an ultimate aim to steal sensitive data. The malware contains capabilities to "steal information from the target system, such as credentials stored in the browser, digital wallet information, data stored Source: TheHackerNews March 18th, 2025 (3 months ago)
	OAuth Attacks Target Microsoft 365, GitHub Description: In a cyber twist, attackers behind two of the campaigns are using the apps to redirect users to phishing and malware distribution sites. Source: Dark Reading March 17th, 2025 (3 months ago)
	Microsoft HPC Node Installed (Linux) Description: Nessus Plugin ID 232833 with Info Severity Synopsis Microsoft HPC Node is installed on the remote Linux host. Description Microsoft HPC Node, an agent for cluster computing, is installed on the remote Linux host. Solution null Read more at https://www.tenable.com/plugins/nessus/232833 Source: Tenable Plugins March 17th, 2025 (3 months ago)
	Microsoft: New RAT malware used for crypto theft, reconnaissance Description: Microsoft has discovered a new remote access trojan (RAT) that employs "sophisticated techniques" to avoid detection, ensure persistence, and extract sensitive information data. [...] Source: BleepingComputer March 17th, 2025 (3 months ago)
	Alleged Sale of 1-Day Remote Code Execution (RCE) Exploit Targeting Microsoft Windows Description: Alleged Sale of 1-Day Remote Code Execution (RCE) Exploit Targeting Microsoft Windows Source: DarkWebInformer March 17th, 2025 (3 months ago)
	Microsoft: March Windows updates mistakenly uninstall Copilot Description: Microsoft says the March 2025 Windows cumulative updates automatically and mistakenly remove the AI-powered Copilot digital assistant from some Windows 10 and Windows 11 systems. [...] Source: BleepingComputer March 17th, 2025 (3 months ago)
	Microsoft wouldn't look at a bug report without a video. Researcher maliciously complied Source: TheRegister March 17th, 2025 (3 months ago)
	Malicious Adobe, DocuSign OAuth apps target Microsoft 365 accounts Description: Cybercriminals are promoting malicious Microsoft OAuth apps that masquerade as Adobe and DocuSign apps to deliver malware and steal Microsoft 365 accounts credentials. [...] Source: BleepingComputer March 16th, 2025 (3 months ago)
	Threat Actor Impersonates Booking.com in Phishing Scheme Description: Microsoft detailed a sophisticated campaign that relies on a social engineering technique, "ClickFix," in which a phisher uses security verification like captcha to give the target a false sense of safety. Source: Dark Reading March 14th, 2025 (3 months ago)
	Week-long Exchange Online outage causes email failures, delays Description: Microsoft says it partially mitigated a week-long Exchange Online outage causing delays or failures when sending or receiving email messages. [...] Source: BleepingComputer March 14th, 2025 (3 months ago)