Windows Archives

Emulating the Hellish Helldown Ransomware

Francis Guibernau | April 24, 2025 | adversary emulation, Broad-Based Attacks, Helldown, Ransomware, Windows

AttackIQ has released a new attack graph emulating the behaviors exhibited by Helldown ransomware since its emergence in August 2024. Helldown is operated by the eponymous and still largely undocumented adversary, which ...

AttackIQ

Microsoft Teams Okta Zoom cybersecurity CEO MS teams

Microsoft Moves Forward With Controversial Recall Feature

Jeffrey Burt | April 11, 2025 | Data Privacy, Data Security, Microsoft Recall, Windows

Microsoft a year ago was about to launch Recall, a Windows feature for Copilot+ PCs that takes regular screenshots of users' systems and stores them so they can be searched for later ...

Security Boulevard

Microsoft Won’t Fix This Bad Zero Day (Despite Wide Abuse)

Satya says NO: Redmond blames Windows users, rather than solve 30-year-old bug—exploited since 2017 ...

Security Boulevard

Windows File Explorer Spoofing Vulnerability (CVE-2025-24071)

NSFOCUS | March 19, 2025 | Blog, CVE-2025-24071, Emergency Response, Windows, Windows vulnerability

Overview Recently, NSFOCUS CERT detected that Microsoft released a security announcement and fixed the spoofing vulnerability of Windows File Explorer (CVE-2025-24071), with a CVSS score of 7.5. Due to the implicit trust ...

NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.

Microsoft Security Update Notification in February of High-Risk Vulnerabilities in Multiple Products

NSFOCUS | February 13, 2025 | Blog, CVE-2025-21391, CVE-2025-21418, Emergency Response, Microsoft, Microsoft vulnerabilities, Windows, Windows vulnerability

Overview On February 12, NSFOCUS CERT detected that Microsoft released a security update patch for February, which fixed 63 security issues involving widely used products such as Windows, Microsoft Office, Azure, Apps, ...

NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.

Microsoft’s January Security Update of High-Risk Vulnerabilities in Multiple Products

NSFOCUS | January 15, 2025 | azure, Blog, Emergency Response, Microsoft Dynamics, Microsoft Edge, Microsoft Office, Microsoft Visual Studio, Windows

Overview On January 14, NSFOCUS CERT detected that Microsoft released a security update patch for January, which fixed 159 security problems in widely used products such as Windows, Microsoft Office, Microsoft Visual ...

NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.

Microsoft’s December Security Update of High-Risk Vulnerabilities in Multiple Products

NSFOCUS | December 13, 2024 | Blog, Emergency Response, Microsoft Office, Microsoft Sharepoint, Windows, Windows LDAP, Windows Remote Desktop Services, Windows vulnerability

Overview On December 11th, NSFOCUS CERT monitored that Microsoft released the December security update patch, fixing 72 security issues involving widely-used products such as Windows, Windows LDAP, Microsoft Office, Windows Remote Desktop ...

NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.

Microsoft Veeps Ignite Fire Under CrowdStrike

Richi Jennings | November 20, 2024 | CrowdStrike, CrowdStrike Falcon, CrowdStrike incident;, crowdstrike updates, David Weston, ignite, Microsoft, Microsoft security, Microsoft Virus Initiative, Microsoft Windows, Quick Machine Recovery, rust, Safe Deployment Practices, SB Blogwatch, Windows, Windows security

BSODs begone! Redmond business leaders line up to say what’s new in Windows security ...

Security Boulevard

Microsoft Fixes Four 0-Days — One Exploited for SIX YEARS

Richi Jennings | September 11, 2024 | CVE-2024-38014, CVE-2024-38217, CVE-2024-38226, CVE-2024-43491, KB5043083, KB5043936, Mark of the Web, Microsoft, Microsoft Patch Tuesday September 2024, Microsoft Windows, Microsoft Windows Zero Day, Patch Tuesday, SB Blogwatch, Windows, Windows Update

Week B: Bugs begone! This month Redmond fixes 79 security flaws in Windows and other products ...

Security Boulevard

Patch Tuesday not Done ’til LINUX Won’t Run?

Richi Jennings | August 21, 2024 | CVE-2022-2601, Dual boot, GRUB2 Bootloader Secure Boot Bypass, Linux, Microsoft, Microsoft Patch Tuesday August 2024, Microsoft Windows, Patch Tuesday, SB Blogwatch, SBAT, secure boot, Secure Boot Advanced Targeting, Windows

Redmond reboot redux: “Something has gone seriously wrong.” You can say that again, Microsoft ...

Security Boulevard

Windows

Emulating the Hellish Helldown Ransomware

Microsoft Moves Forward With Controversial Recall Feature

Microsoft Won’t Fix This Bad Zero Day (Despite Wide Abuse)

Windows File Explorer Spoofing Vulnerability (CVE-2025-24071)

Microsoft Security Update Notification in February of High-Risk Vulnerabilities in Multiple Products

Microsoft’s January Security Update of High-Risk Vulnerabilities in Multiple Products

Microsoft’s December Security Update of High-Risk Vulnerabilities in Multiple Products

Microsoft Veeps Ignite Fire Under CrowdStrike

Microsoft Fixes Four 0-Days — One Exploited for SIX YEARS

Patch Tuesday not Done ’til LINUX Won’t Run?

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On