Microsoft Azure Suffers Major Outage Amid Configuration Issues Microsoft’s Azure cloud platform, along with its widely utilized 365 services and gaming platforms such as Xbox and Minecraft, experienced significant outages around noon Eastern time on Wednesday. The company attributed these disruptions to “an inadvertent configuration change.” This incident represents the…
Governance & Risk Management, Patch Management Significant Vulnerability in Windows Server Update Services Exposed Akshaya Asokan (asokan_akshaya) • October 28, 2025 Image: bluestork/Shutterstock Concerns are mounting over the exploitation of a flaw in Windows Server Update Services (WSUS), especially after Microsoft expedited a patch addressing an issue that permits unauthenticated…
Microsoft Unveils Details of Targeted Phishing Attack Exploiting Critical Vulnerability On Wednesday, Microsoft provided significant insights into a sophisticated phishing campaign that capitalized on a now-resolved zero-day vulnerability in its MSHTML platform. The exploit involved specially designed Office documents aimed at deploying Cobalt Strike Beacon malware on compromised Windows systems,…
Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development Nonprofit Organization Maintains Oversight Over $130 Billion For-Profit Entity Michael Novinson (MichaelNovinson) • October 28, 2025 Sam Altman, CEO, OpenAI (Image: Photo Agency/Shutterstock) OpenAI recently completed a significant recapitalization and corporate restructuring aimed at clarifying its nonprofit mission in relation…
New Malware Uncovered Linked to Nobelium’s Supply Chain Attacks On Wednesday, cybersecurity researchers unveiled a previously unreported backdoor likely developed by Nobelium, the advanced persistent threat group responsible for last year’s SolarWinds supply chain attack. This latest malware, codenamed “Tomiris” by Kaspersky, further expands an arsenal of hacking tools employed…
New Security Flaws Discovered in Citrix Virtual Apps and Desktop Leading to Remote Code Execution Risks Cybersecurity researchers have identified critical vulnerabilities in Citrix Virtual Apps and Desktop that expose users to potential remote code execution (RCE) attacks. These flaws, uncovered by the team at watchTowr, revolve around the Session…
On November 12, 2024, Microsoft disclosed that two significant security vulnerabilities affecting Windows NT LAN Manager (NTLM) and Task Scheduler have been actively exploited in the wild. These vulnerabilities were part of the November Patch Tuesday update, which addressed a total of 90 security flaws across Microsoft products. Among the…
A newly discovered security vulnerability in Windows NT LAN Manager (NTLM) has been exploited in a zero-day attack, with suspected ties to Russian threat actors targeting Ukraine. This vulnerability, designated as CVE-2024-43451 and rated with a CVSS score of 6.5, allows attackers to possibly expose a user’s NTLMv2 hash. Microsoft…
A new hacking group reportedly aligned with Iranian national interests has been observed executing a password spraying campaign aimed at defense technology companies in the U.S., European Union, and Israel. This campaign has also extended to regional ports of entry in the Persian Gulf and maritime companies operating in the…
