endpoint security

Microsoft has confirmed a use‑after‑free vulnerability in Microsoft Excel (tracked as CVE‑2025‑53735) that can lead to local code execution when a crafted spreadsheet is opened — a serious document‑based attack vector that demands immediate attention from IT teams and security‑minded users...

Microsoft’s security advisory identifies CVE-2025-53724 as an elevation of privilege vulnerability in the Windows Push Notifications Apps component that stems from an access of resource using incompatible type (type confusion); when triggered by a locally authorized user, the bug can be abused...

Microsoft’s Security Response Guide flags a null-pointer dereference in the Windows Ancillary Function Driver for WinSock (AFD.sys) that, when reached by a local, authorized user, can be weaponized into an elevation‑of‑privilege to SYSTEM — a high‑impact kernel vulnerability that demands...

Title: CVE-2025-53131 — What Windows admins need to know about the new Windows Media RCE (heap-based buffer overflow) Summary (TL;DR) CVE-2025-53131 is a heap-based buffer overflow in Windows Media components that can allow remote, unauthenticated attackers to execute arbitrary code over a...

Microsoft has published an advisory for CVE-2025-50172: a vulnerability in the DirectX Graphics Kernel that permits authorized attackers to cause a denial‑of‑service (DoS) by allocating graphics resources without limits or throttling, potentially disrupting hosts and virtualized workloads that...

Title: CVE‑2025‑50173 — Windows Installer “Weak Authentication” Elevation‑of‑Privilege: What admins need to know and do now Summary Microsoft lists CVE‑2025‑50173 as an elevation‑of‑privilege vulnerability in Windows Installer. The vendor description summarizes the issue as “weak authentication...

Microsoft's Security Response Center lists CVE-2025-50161 as a heap-based buffer overflow in the Win32K GRFX subsystem that allows an authorized local attacker to elevate privileges, and administrators should treat this as a high-priority patching item for all affected Windows hosts...

Microsoft’s security advisory confirms a use-after-free flaw in the Remote Access Point-to-Point Protocol (PPP) EAP-TLS implementation that can allow an authorized local attacker to elevate privileges on affected Windows systems, and administrators must treat this as a priority patching and...

Microsoft's security update for a Windows File Explorer flaw underscores a long-standing risk vector: trusted UI components that implicitly parse untrusted content. In March 2025 Microsoft disclosed and patched a Windows File Explorer spoofing vulnerability that could cause Explorer to...

A recently published Microsoft advisory warns that CVE-2025-49762 — a race-condition flaw in the Windows Ancillary Function Driver for WinSock (AFD.sys) — can allow a locally authorized attacker to elevate privileges by exploiting concurrent execution using a shared resource with improper...

Microsoft has confirmed that Windows PowerShell 2.0 — the legacy scripting engine first shipped with Windows 7 — will be removed from shipping Windows images as part of the upcoming Windows 11 and Windows Server 2025 releases, a change that closes a long‑running deprecation and removes a known...

Dell’s push into AI-ready PCs — and Haidi Nossair’s argument that this shift is fast becoming a competitive necessity rather than an optional refresh — captures a broader industry inflection where the endpoint is again being recast as strategic infrastructure for the enterprise. The conversation...

A new wave of skepticism is sweeping through the IT security world following revelations by renowned German researchers who have cast serious doubt on the safety of Windows Hello for business use. The much-touted biometric authentication system, a showcase feature in both Windows 10 and Windows...

Amid the frenetic pace and crowded exhibition halls of Black Hat 2025, three vendor announcements have emerged as potential game-changers in enterprise security. With the hybrid work era pushing organizations to grapple with unmanaged devices, bring-your-own-device (BYOD) policies, and surging...

Amid an escalating threat landscape where ransomware strikes have become the new norm for organizations across the globe, CrashPlan is positioning itself at the forefront of cyber resiliency and data protection. The acclaimed backup and cyber resiliency authority is set to showcase its latest...

A newly disclosed security flaw in Microsoft Exchange hybrid deployments is triggering urgent action among IT administrators worldwide, as Microsoft warns of a critical vulnerability—CVE-2025-53786—that exposes hybrid environments to stealthy privilege escalation attacks. As organizations...

Microsoft has unveiled its new AI-powered Phishing Triage Agent within Microsoft Defender, now available in public preview, marking a significant evolution in the way organizations approach email threat detection and response. As cyber threats continue to escalate in complexity and volume...

In a significant move poised to refocus how organizations manage data protection within Microsoft 365 environments, Sophos and Rubrik have announced a new, integrated backup and recovery solution explicitly tailored for Microsoft 365 users. This strategic partnership leverages Sophos’ expertise...

A sweeping transformation is underway in how enterprises approach digital continuity and cyber resilience, as Sophos unveils its MDR-optimised Microsoft 365 Backup and Recovery solution powered by Rubrik. In a move hailed by industry leaders as reshaping operational security, the partnership...

Making the switch to Windows 11 has been heralded as a leap forward in not only aesthetics and functionality, but also in built-in security—a claim that warrants closer scrutiny. As the world’s most widely used operating system gradually shifts from Windows 10 to Windows 11, users and industry...