Microsoft has recently issued a warning regarding an actively exploited zero-day vulnerability affecting Internet Explorer. This flaw is being utilized to compromise Windows systems by means of malicious Microsoft Office documents. Identified as CVE-2021-40444 with a CVSS score of 8.8, the vulnerability resides in MSHTML, a proprietary browser engine that…
Business Continuity Management / Disaster Recovery, Cloud Data Security & Resilience, Governance & Risk Management Azure Outage Occurs Just Days After Major AWS DNS Disruption Cal Harrison • October 29, 2025 Image: Shutterstock On October 29, Microsoft’s Azure cloud and Office 365 systems encountered a significant outage caused by a…
Microsoft Azure Suffers Major Outage Amid Configuration Issues Microsoft’s Azure cloud platform, along with its widely utilized 365 services and gaming platforms such as Xbox and Minecraft, experienced significant outages around noon Eastern time on Wednesday. The company attributed these disruptions to “an inadvertent configuration change.” This incident represents the…
Governance & Risk Management, Patch Management Significant Vulnerability in Windows Server Update Services Exposed Akshaya Asokan (asokan_akshaya) • October 28, 2025 Image: bluestork/Shutterstock Concerns are mounting over the exploitation of a flaw in Windows Server Update Services (WSUS), especially after Microsoft expedited a patch addressing an issue that permits unauthenticated…
Microsoft Unveils Details of Targeted Phishing Attack Exploiting Critical Vulnerability On Wednesday, Microsoft provided significant insights into a sophisticated phishing campaign that capitalized on a now-resolved zero-day vulnerability in its MSHTML platform. The exploit involved specially designed Office documents aimed at deploying Cobalt Strike Beacon malware on compromised Windows systems,…
Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development Nonprofit Organization Maintains Oversight Over $130 Billion For-Profit Entity Michael Novinson (MichaelNovinson) • October 28, 2025 Sam Altman, CEO, OpenAI (Image: Photo Agency/Shutterstock) OpenAI recently completed a significant recapitalization and corporate restructuring aimed at clarifying its nonprofit mission in relation…
New Malware Uncovered Linked to Nobelium’s Supply Chain Attacks On Wednesday, cybersecurity researchers unveiled a previously unreported backdoor likely developed by Nobelium, the advanced persistent threat group responsible for last year’s SolarWinds supply chain attack. This latest malware, codenamed “Tomiris” by Kaspersky, further expands an arsenal of hacking tools employed…
New Security Flaws Discovered in Citrix Virtual Apps and Desktop Leading to Remote Code Execution Risks Cybersecurity researchers have identified critical vulnerabilities in Citrix Virtual Apps and Desktop that expose users to potential remote code execution (RCE) attacks. These flaws, uncovered by the team at watchTowr, revolve around the Session…
On November 12, 2024, Microsoft disclosed that two significant security vulnerabilities affecting Windows NT LAN Manager (NTLM) and Task Scheduler have been actively exploited in the wild. These vulnerabilities were part of the November Patch Tuesday update, which addressed a total of 90 security flaws across Microsoft products. Among the…
