#microsoft

Improper privilege management in Microsoft Office SharePoint allows an authorized attacker to elevate privileges locally.

Improper link resolution before file access ('link following') in Microsoft PC Manager allows an authorized attacker to elevate privileges locally.

Improper access control in Azure File Sync allows an authorized attacker to elevate privileges locally.

Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.

A Türkiye-affiliated threat actor exploited a zero-day security flaw in an Indian enterprise communication platform called Output Messenger as part of a cyber espionage attack campaign since April 2024. "These exploits have resulted in a collection of related user data from targets in Iraq," the Microsoft Threat Intelligence team said. "The targets of the attack are associated with the Kurdish

Optimizing your online productivity is more important than ever. Whether you’re a business owner, freelancer, or simply someone…

As AI-driven fraud becomes increasingly common, more people feel the need to verify every interaction they have online.

Varonis reveals attackers are using SEO poisoning to trick IT admins into downloading malware, alongside a critical root…

About Elevation of Privilege – Windows Common Log File System Driver (CVE-2025-29824) vulnerability. The vulnerability from the April Microsoft Patch Tuesday allows an attacker operating under a regular user account to escalate their privileges to SYSTEM level.🔻 According to Microsoft, the vulnerability was exploited in attacks against organizations in the U.S., Venezuela, Spain, and Saudi […]

Cofense Intelligence reveals a novel phishing technique using blob URIs to create local fake login pages, bypassing email…