Subscribe
Wednesday, April 22, 2026
type here...
Subscribe
HomeTagsMicrosoft

Tag: microsoft

Hackers Scanning Microsoft Remote Desktop Web Access From 1000+ IPs

A massive coordinated campaign targeting Microsoft Remote Desktop Protocol (RDP) services, with nearly 2,000 malicious IP addresses conducting simultaneous reconnaissance attacks against authentication portals. The unprecedented surge represents a 400-fold increase from normal baseline activity and signals potential preparations for large-scale credential-based attacks on...
Read more

Microsoft Defender AI Identifies Plaintext Credentials in Active Directory

Microsoft has unveiled a groundbreaking AI-powered security enhancement for its Defender for Identity platform that addresses a critical vulnerability plaguing organizations worldwide: exposed plain text credentials stored within Active Directory systems. The new feature, announced on August 14, 2025, represents a significant advancement in...
Read more

New 0-Click NTLM Credential Leak Vulnerability Evades Microsoft’s CVE-2025-24054 Patch

A critical zero-click vulnerability that circumvents Microsoft's security patch for CVE-2025-24054, enabling attackers to extract NTLM credentials without any user interaction. The new vulnerability, assigned CVE-2025-50154, demonstrates that Microsoft's April security update was incomplete, leaving Windows systems vulnerable to credential theft and malicious...
Read more

CISA Issues Urgent Warning on Critical Microsoft Exchange Security Vulnerability

The Cybersecurity and Infrastructure Security Agency (CISA) issued Emergency Directive 25-02 on August 7, 2025, ordering federal agencies to immediately address a critical vulnerability in Microsoft Exchange hybrid deployments. The directive, responding to CVE-2025-53786, gives all Federal Civilian Executive Branch agencies until 9:00 AM...
Read more

New Microsoft Exchange Vulnerability Grants Attackers Admin Access

Microsoft and CISA have issued urgent security alerts regarding a newly discovered high-severity vulnerability in Exchange Server hybrid deployments that could enable attackers to escalate privileges and potentially compromise both on-premises and cloud infrastructure. The vulnerability, tracked as CVE-2025-53786, affects organizations running hybrid configurations...
Read more

Microsoft Unveils Strategies to Combat Indirect Prompt Injection Attacks

Microsoft has unveiled a comprehensive defense-in-depth strategy to combat indirect prompt injection attacks, a growing cybersecurity threat targeting large language model (LLM) systems used in enterprise environments. The tech giant's multi-layered approach combines preventative techniques, real-time detection tools, and impact mitigation strategies to protect...
Read more

About us

The Cyber News is an online community for security professionals. It features articles from top security researchers, CISOs, and technology experts.

Company

The latest

Burp Suite Supercharges Its Scanning Capabilities With React2Shell Vulnerability Detection

Cybersecurity News 0
PortSwigger has leveled up Burp Suite's scanning arsenal with...

Malicious MCP Servers Enable New Prompt Injection Attack To Drain Resources

Cybersecurity News 0
Unit 42 researchers at Palo Alto Networks exposed serious...

Law Enforcement Detains Hackers Equipped With Specialized Flipper Hacking Tools

Cyber News 0
Polish police have arrested three Ukrainian men traveling through...

Subscribe

© 2025 the Cyber News