security-operations

Microsoft’s September 2025 Patch Tuesday shipped a wide-ranging set of fixes addressing 80 CVEs across Windows, Office, virtualization, and platform components — with eight rated Critical and 72 rated Important — and included several high-profile fixes for SMB, NTLM, NTFS, Office, SharePoint...

Microsoft’s terse advisory that “concurrent execution using a shared resource with improper synchronization (‘race condition’) in Windows Hyper‑V allows an authorized attacker to elevate privileges locally” is the single-line summary administrators need to treat as urgent: this is a Hyper‑V race...

CISA’s KEV catalog grew again this week with the addition of two high‑risk router flaws tied to active exploitation, underscoring an uncomfortable reality for IT teams: inexpensive consumer and small‑office routers remain a prime target for adversaries and can pose outsized risk to enterprise...

Microsoft is moving to strictly limit outbound email sent from the shared .onmicrosoft.com tenant namespace — commonly called MOERA (Microsoft Online Email Routing Address) — introducing a hard cap that will throttle messages sent from onmicrosoft.com addresses to 100 external recipients per...

On August 13, 2025, the Cybersecurity and Infrastructure Security Agency (CISA), together with the National Security Agency (NSA), the Federal Bureau of Investigation (FBI), the Environmental Protection Agency (EPA) and several international partners, published detailed guidance aimed at helping...

Microsoft’s latest expansion of Defender for Cloud into its U.S. Government cloud offerings delivers long‑promised parity for server protection and brings Cloud Security Posture Management (CSPM) to sovereign environments — a practical uplift for agencies that must balance stringent compliance...