threat intelligence

Microsoft has assigned CVE-2025-50168 to a Windows kernel vulnerability in the Win32K ICOMP component described as "Access of resource using incompatible type ('type confusion')" that can allow an authorized local user to elevate privileges; Microsoft’s advisory is published in the Security...

A recently published Microsoft advisory warns that CVE-2025-49762 — a race-condition flaw in the Windows Ancillary Function Driver for WinSock (AFD.sys) — can allow a locally authorized attacker to elevate privileges by exploiting concurrent execution using a shared resource with improper...

Thanks — before I write the full 2,000+ word WindowsForum.com article, two quick clarifications so I get it exactly right: Can you confirm the CVE ID is CVE-2025-25005 (not a different nearby CVE such as CVE-2025-53786)? I tried to load Microsoft’s page but the MSRC site uses a dynamic app and...

A heap‑based buffer overflow found in Microsoft Excel, tracked as CVE‑2025‑53741, has been published in Microsoft's Security Update Guide as a vulnerability that can allow an attacker to execute code on a victim machine when a crafted spreadsheet is opened; administrators and users should treat...

A Microsoft Security Update Guide entry for CVE-2025-33051 describes an information disclosure vulnerability affecting Microsoft Exchange Server, and the appearance of that CVE on the vendor’s advisory should put any on‑premises Exchange administrator on high alert. At the time of writing...

Abnormal AI’s latest update to its Security Posture Management platform marks a significant leap forward in the race to secure Microsoft 365 environments, meeting the growing demand for automated, AI-driven defense against sophisticated threat actors and accidental misconfigurations. As...

Microsoft has unveiled its new AI-powered Phishing Triage Agent within Microsoft Defender, now available in public preview, marking a significant evolution in the way organizations approach email threat detection and response. As cyber threats continue to escalate in complexity and volume...

In a significant move to reshape Microsoft 365 security, Abnormal AI has unveiled a major update to its Security Posture Management solution, placing advanced AI-driven protection, automated prioritization, and actionable remediation front and center for enterprises navigating the labyrinth of...

Cybersecurity in the corporate realm now sits at the top of IT agendas for organizations of all sizes, as email remains the most common vector for threats like phishing, ransomware, and sophisticated malware attachments. Microsoft Exchange Online Protection (EOP) has long held dominance due to...

The age of digital transformation has transitioned from an anticipated future to a defining reality where continuous disruption is now the standard. Artificial intelligence, quantum computing, intelligent agents, and other transformative technologies are already changing the business landscape...

A newly disclosed exploit chain targeting Microsoft SharePoint servers is sending shockwaves across enterprise IT and cybersecurity circles, revealing a sophisticated blend of zero-day and known vulnerabilities that enable cyber attackers to gain near-total control of systems. Security agencies...

A new wave of critical vulnerabilities in Microsoft SharePoint has come to light with the release of a comprehensive Malware Analysis Report (MAR) by the US Cybersecurity and Infrastructure Security Agency (CISA). The report shines a spotlight on dangerous exploitation chains—most notably one...

Malware detection and response are on the brink of transformation as Microsoft unveils Project Ire, its cutting-edge AI-powered tool designed to autonomously root out malicious software. Announced amidst mounting cyber threats and escalating attack sophistication, Project Ire aims to...

An alarming new wave of cybercrime has emerged, leveraging the very security tools designed to shield organizations from harm. Recent research reveals that phishing actors are now abusing link-wrapping and URL-rewriting services—trusted pillars of enterprise email protection—to sneak malicious...

A significant security vulnerability has emerged for the Mitsubishi Electric ICONICS Product Suite and MC Works64, one that underscores the critical importance of proactive patch management and robust network segmentation across industrial environments. Marked as CVE-2025-7376, the flaw...

A new wave of cyberattacks has exposed a dangerous flaw in trusted email security services, as hackers have successfully exploited protective link-wrapping features to orchestrate large-scale phishing campaigns targeting Microsoft 365 logins. By hijacking the mechanisms designed to keep users...

Cloudflare has issued a stark warning about a new and highly sophisticated wave of phishing attacks targeting Microsoft 365 users, drawing attention to a dangerous exploitation of a trusted email security feature: link wrapping. In recent weeks, both enterprise and consumer accounts have come...

A wave of highly sophisticated phishing attacks has put Microsoft 365 users—and the very foundations of modern email security—at risk, exposing a perilous paradox: the same technologies designed to protect cloud productivity platforms are now being systematically exploited to facilitate...

The launch of Thorium, the open-source malware analysis platform unveiled by the Cybersecurity and Infrastructure Security Agency (CISA), marks a significant milestone in the evolution of threat intelligence and response capabilities for organizations worldwide. With cyberattacks growing in...

A sophisticated phishing campaign exploiting trusted email security tools has rattled the cybersecurity landscape, exposing a dismally clever strategy that turns protective mechanisms into attack vectors. Between June and July 2025, researchers at Cloudflare uncovered an operation wherein...