Time to Patch – PossibleThreat Articles

Microsoft Fix Targets Attacks on SharePoint Zero-Day

July 25, 2025 0 Comments cisa, cve-2025-49704, cve-2025-49706, cve-2025-53770, cve-2025-53771, cybersecurity & infrastructure security agency, eye security, Latest Warnings, microsoft corp., rapid7, sharepoint server, The Coming Storm, Time to Patch

Credit to Author: BrianKrebs| Date: Mon, 21 Jul 2025 14:45:46 +0000

On Sunday, July 20, Microsoft Corp. issued an emergency security update for a vulnerability in SharePoint Server that is actively being exploited to compromise vulnerable organizations. The patch comes amid reports that malicious hackers have used the Sharepoint flaw to breach U.S. federal and state agencies, universities, and energy companies.

Independent Krebs

Microsoft Patch Tuesday, July 2025 Edition

July 25, 2025 0 Comments action1, adam barnett, Adobe, ben hopkins, cve-2025-47178, cve-2025-47981, cve-2025-49695, cve-2025-49696, cve-2025-49697, cve-2025-49702, cve-2025-49719, cve-2025-49740, Latest Warnings, microsoft configuration manager, microsoft defender smartscreen, microsoft patch tuesday july 2025 edition, mike walters, office, rapid7, security tools, sql server 2012, sql server 2016, Time to Patch

Credit to Author: BrianKrebs| Date: Wed, 09 Jul 2025 00:53:33 +0000

Microsoft today released updates to fix at least 137 security vulnerabilities in its Windows operating systems and supported software. None of the weaknesses addressed this month are known to be actively exploited, but 14 of the flaws earned Microsoft’s most-dire “critical” rating, meaning they could be exploited to seize control over vulnerable Windows PCs with little or no help from users.

Independent Krebs

Senator Chides FBI for Weak Advice on Mobile Security

July 25, 2025 0 Comments A Little Sunshine, Apple, bill marczak, citizen lab, cve-2025-43200, emerita melissa hortman, federal bureau of investigation, Google, international computer science institute, john hoffman, kash patel, Latest Warnings, lockdown mode, lorenzo francheschi-bicchierai, nicholas weaver, security tools, sen. ron wyden, susie wiles, The Coming Storm, the wall street journal, Time to Patch

Credit to Author: BrianKrebs| Date: Mon, 30 Jun 2025 17:33:59 +0000

Agents with the Federal Bureau of Investigation (FBI) briefed Capitol Hill staff recently on hardening the security of their mobile devices, after a contacts list stolen from the personal phone of the White House Chief of Staff Susie Wiles was reportedly used to fuel a series of text messages and phone calls impersonating her to U.S. lawmakers. But in a letter this week to the FBI, one of the Senate’s most tech-savvy lawmakers says the feds aren’t doing enough to recommend more appropriate security protections that are already built into most consumer mobile devices.

Independent Krebs

Patch Tuesday, June 2025 Edition

July 25, 2025 0 Comments acrobat reader, action1, adam barnett, Akamai, alex vovk, automox, badsuccessor, cve-2025-33053, cve-2025-33073, experience manager, Google Chrome, mozilla firefox, patch tuesday june 2025, rapid7, sans internet storm center, security tools, seth hoyt, Time to Patch, webdav, windows server message block

Credit to Author: BrianKrebs| Date: Wed, 11 Jun 2025 00:10:53 +0000

Microsoft today released security updates to fix at least 67 vulnerabilities in its Windows operating systems and software. Redmond warns that one of the flaws is already under active attack, and that software blueprints showing how to exploit a pervasive Windows bug patched this month are now public.

Independent Krebs Security

Microsoft: 6 Zero-Days in March 2025 Patch Tuesday

March 11, 2025 0 Comments adam barnett, cve-2025-24983, cve-2025-24984, cve-2025-24985, cve-2025-24991, cve-2025-24993, cve-2025-26633, eset, filip jurčacko, rapid7, security tools, Time to Patch

Credit to Author: BrianKrebs| Date: Tue, 11 Mar 2025 23:53:01 +0000

Microsoft today issued more than 50 security updates for its various Windows operating systems, including fixes for a whopping six zero-day vulnerabilities that are already seeing active exploitation.

Independent Krebs Security

Microsoft Patch Tuesday, February 2025 Edition

February 28, 2025 0 Comments adam barnett, Adobe, Apple, cve-2024-38193, cve-2025-21377, cve-2025-21391, cve-2025-21418, Google Chrome, microsoft 365 copilot, microsoft patch tuesday february 2025, other, rapid7, sans internet storm center, satnam narang, tenable, Time to Patch

Credit to Author: BrianKrebs| Date: Wed, 12 Feb 2025 04:58:37 +0000

Microsoft today issued security updates to fix at least 56 vulnerabilities in its Windows operating systems and supported software, including two zero-day flaws that are being actively exploited.

Independent Krebs Security

Infrastructure Laundering: Blending in with the Cloud

January 30, 2025 0 Comments A Little Sunshine, acb group, amazon aws, anjie cdn, crowell & moring llp, fangneng cdn, funnull, infrastructure laundering, Microsoft Azure, Ne'er-Do-Well News, netscout, noname057(16), polyfill, richard hummel, silent push, suncity group, Time to Patch, u.s. department of commerce, Web Fraud 2.0, zach edwards

Credit to Author: BrianKrebs| Date: Thu, 30 Jan 2025 17:10:08 +0000

In an effort to blend in and make their malicious traffic tougher to block, hosting firms catering to cybercriminals in China and Russia increasingly are funneling their operations through major U.S. cloud providers. Research published this week on one such outfit — a sprawling network tied to Chinese organized crime gangs and aptly named “Funnull” — highlights a persistent whac-a-mole problem facing cloud services.

Independent Krebs Security

Microsoft: Happy 2025. Here’s 161 Security Updates

January 14, 2025 0 Comments adam barnett, bitlocker, bob hopkins, cve-2024-49142, cve-2025-21186, cve-2025-21210, cve-2025-21298, cve-2025-21311, cve-2025-21333, cve-2025-21334, cve-2025-21335, cve-2025-21366, cve-2025-21395, kev breen, Latest Warnings, microsoft access, microsoft patch tuesday january 2025, rapid7, satnam narang, The Coming Storm, Time to Patch, unpatched.ai, windows 11, windows hyper-v, windows ntlmv1

Credit to Author: BrianKrebs| Date: Tue, 14 Jan 2025 22:50:00 +0000

Microsoft today unleashed updates to plug a whopping 161 security vulnerabilities in Windows and related software, including three “zero-day” weaknesses that are already under active attack. Redmond’s inaugural Patch Tuesday of 2025 bundles more fixes than the company has shipped in one go since 2017.

Independent Krebs Security

Microsoft Patch Tuesday, November 2024 Edition

November 12, 2024 0 Comments cve-2024-43451, cve-2024-43602, cve-2024-49019, cve-2024-49039, cve-2024-49040, google tag, microsoft patch tuesday november 2024, satnam narang, security tools, tenable, Time to Patch

Credit to Author: BrianKrebs| Date: Tue, 12 Nov 2024 21:59:46 +0000

Microsoft today released updates to plug at least 89 security holes in its Windows operating systems and other software. November’s patch batch includes fixes for two zero-day vulnerabilities that are already being exploited by attackers, as well as two other flaws that were publicly disclosed prior to today.

Independent Krebs Security

Patch Tuesday, October 2024 Edition

October 8, 2024 0 Comments .net, Adobe, adobe framemaker, adobe substance 3d painter, animate, Apple, Azure, commerce, cve-2024-43572, cve-2024-43573, dimension, elastic security labs, grimresource, immersive labs, incopy, indesign, Latest Warnings, lightroom, macos 15, mshtml, nikolas cemerikic, office, openssh for windows; power bi; windows hyper-v; windows mobile broadband, satnam narang, security tools, sequoia, substance 3d stager, tenable, Time to Patch, visual studio

Credit to Author: BrianKrebs| Date: Tue, 08 Oct 2024 22:21:19 +0000

Microsoft today released security updates to fix at least 117 security holes in Windows computers and other software, including two vulnerabilities that are already seeing active attacks. Also, Adobe plugged 52 security holes across a range of products, and Apple has addressed a bug in its new macOS 15 “Sequoia” update that broke many cybersecurity tools.

← Previous