privilege

Microsoft's advisory confirms a use‑after‑free flaw in Microsoft Excel that can lead to local code execution when a specially crafted spreadsheet is opened, creating a potentially serious escalation path on unpatched systems. Overview This vulnerability, tracked as CVE‑2025‑54904, is listed in...

Microsoft is putting a second line of defense around AI agents: Copilot Studio now supports advanced near‑real‑time protection during agent runtime, a public‑preview capability that lets organizations route an agent’s planned actions through external monitoring systems — including Microsoft...

Microsoft has confirmed that Phase 2 of its mandatory multi‑factor authentication (MFA) enforcement for Azure will begin a tenant‑by‑tenant rollout this autumn, extending MFA requirements from portal sign‑ins down into the Azure Resource Manager (ARM) control plane and affecting command‑line...

Microsoft has acknowledged a compatibility regression introduced by the August 12, 2025 cumulative Windows updates that can cause unexpected User Account Control (UAC) elevation prompts and MSI Error 1730 failures for non‑administrator users when applications trigger Windows Installer (MSI)...

In January, security researchers at Aim Labs disclosed a zero-click prompt‑injection flaw in Microsoft 365 Copilot that demonstrated how a GenAI assistant with broad document access could be tricked into exfiltrating sensitive corporate data without any user interaction—an attack class that...

A publicly exposed appsettings.json containing Azure Active Directory (Entra ID) application credentials has opened a direct, programmatic path into affected tenants — a single misconfigured JSON file acting as a master key for cloud estates and enabling attackers to exchange leaked...

A publicly exposed appsettings.json file that contained Azure Active Directory application credentials has created a direct, programmatic attack path into affected tenants — a misconfiguration that can let attackers exchange leaked ClientId/ClientSecret pairs for OAuth 2.0 access tokens and then...

Microsoft’s short, step-by-step support page for Microsoft Edge lays out the basics for adding, disabling, and removing extensions — but the topic matters far beyond a few clicks. Extensions shape privacy, performance, and security for millions of Windows users, and managing them properly is now...

If you manage servers, opening a port in the Windows Server firewall is one of those routine tasks that’s trivial to execute but easy to get wrong — and a single misconfiguration can expose services to the public internet. This feature explains the exact, supported ways to open ports in Windows...

Microsoft’s August 2025 cumulative rollups have introduced a surprising compatibility regression: launching some MSI‑based applications — most notably AutoCAD family products, Firefox variants, and certain SAP installers — can now surface a User Account Control (UAC) elevation prompt at first...

Borderless CS’s launch of IT Hardening Expert Services arrives at a moment when simple misconfigurations and unmaintained defaults are repeatedly exposed as the weakest links in enterprise security, and the firm is pitching a pragmatic, standards-aligned program to shrink attack surfaces across...

Schneider Electric has published an advisory—republished by CISA—about an improper privilege management vulnerability in its Saitel family of Remote Terminal Units (RTUs) that has been assigned CVE‑2025‑8453 and carries a CVSS v3.1 base score of 6.7, affecting Saitel DR RTU firmware versions...

Microsoft’s August security rollups have surfaced an unexpected compatibility regression that is blocking common per‑user MSI actions with a UAC elevation gate — and university computer labs are feeling the impact hardest, where standard student accounts now hit Error 1730 when the operating...

Microsoft has quietly extended Copilot’s reach deeper into the Azure developer workflow by launching a public preview of the GitHub Copilot for Azure extension for Visual Studio 2022, bringing a curated set of Azure tools—exposed via an Azure Model Context Protocol (MCP) server—directly into...

Microsoft has begun a strict, time‑boxed push to move Exchange hybrid customers off a Microsoft‑managed shared service principal and onto a dedicated Exchange hybrid app in Entra ID — a change driven by a high‑severity hybrid vulnerability and enforced through short, scheduled EWS traffic blocks...

Zero-trust is not an add-on for AI pipelines — it must be baked into the fabric of how data, models and orchestration talk to one another. In a recent InfoWorld piece, the author laid out a metadata-driven, zero-trust MLOps reference architecture on Azure that combines Microsoft Entra ID, Azure...

In a significant escalation for industrial cybersecurity, a broad class of Siemens engineering software has been confirmed vulnerable to a type confusion deserialization flaw that can lead to arbitrary code execution when an attacker has local authenticated access. The issue—tracked under...

Siemens' widely deployed use of Wibu-Systems CodeMeter Runtime has again drawn scrutiny after a local privilege-escalation flaw (CVE-2025-47809) was published that can let an unprivileged user gain elevated access immediately after an unprivileged installation when the CodeMeter Control Center...

OpenAI’s ChatGPT can now reach into your Gmail inbox, read your Google Calendar, and look up people in Google Contacts — all from inside a single chat — marking a clear escalation in the product’s push from a conversational assistant toward a full-fledged, context-aware workspace tool. The...

Title: Urgent: CVE-2025-49707 — Azure Virtual Machines Improper Access Control Allows Local Spoofing (What IT Teams Must Do Now) Summary Microsoft has published guidance for CVE-2025-49707: an improper access-control vulnerability in Azure Virtual Machines that allows an authorized attacker to...