Microsoft November 2025 Patch Tuesday fixes 1 zero-day, 63 flaws

Today is Microsoft' 2025 Patch Tuesday, which includes security updates for 63 flaws, including one actively exploited ...

Microsoft Reveals Critical Windows Remote Desktop Flaw

An "authorized attacker" could exploit this weakness to gain elevated privileges, potentially reaching SYSTEM-level access.
Infosecurity-magazine.com

Microsoft: Critical GoAnywhere Bug Exploited in Medusa Ransomware Campaign

A vulnerability in Fortra’s GoAnywhere Managed File Transfer (MFT) tool with a CVSS score of 10.0 is being actively exploited in ransomware attacks, Microsoft has warned. The tech giant published a ...
JD Supra

Critical Microsoft SharePoint Vulnerability: What You Need to Know

Microsoft has just disclosed a serious vulnerability in SharePoint (CVE-2025-53770) that allows unauthenticated attackers to remotely execute code in a SharePoint server hosted on-prem – no user ...
KWCH

Microsoft issues alert to businesses and governments about “active attacks” on its SharePoint servers

(CNN) - Microsoft has issued an alert about “active attacks” on its server software. The affected SharePoint servers are used by businesses and government agencies to share files. Microsoft recommends ...
The Express Tribune on MSN

PKCERT warns of high-risk vulnerability in Microsoft Windows server

Pakistan’s national cyber-incident response body, Pakistan Computer Emergency Response Team, has issued a critical security ...
Bleeping Computer

Microsoft: Critical GoAnywhere bug exploited in ransomware attacks

A cybercrime group, tracked as Storm-1175, has been actively exploiting a maximum severity GoAnywhere MFT vulnerability in Medusa ransomware attacks for nearly a month. Tracked as CVE-2025-10035, this ...