Tag: microsoft
-
The Microsoft GoAnywhere bug is being actively exploited in ransomware campaigns that target organizations worldwide. This critical vulnerability affects Fortra’s GoAnywhere Managed File Transfer (MFT) software, allowing attackers to execute code remotely and steal sensitive data. Microsoft confirmed that multiple ransomware groups are abusing the flaw in large-scale attacks. The company urges all users to…
-
A Microsoft Defender bug is confusing Dell users by triggering false BIOS update alerts. The flaw stems from faulty logic in Defender’s vulnerability-checking system, which incorrectly flags firmware versions as outdated. Microsoft confirmed the issue and promised a fix. What Happened Microsoft Defender for Endpoint began alerting Dell users that their BIOS required updates. In…
-
Microsoft seizes phishing sites connected to Raccoon0365, a Nigerian group running a subscription-based cybercrime service. Nearly 340 domains were taken down. These websites hosted fake Microsoft login pages designed to steal credentials. The takedown is one of the largest anti-phishing operations Microsoft has led this year. How Raccoon0365 Operated The group launched its service in…
-
Microsoft is investigating a widespread Microsoft Exchange Online outage that has left countless users unable to access their emails. The disruption began in North America and quickly expanded to South America, creating widespread frustration for businesses and individuals who rely on Microsoft’s cloud services. The outage prevents access to mailboxes through Outlook, Teams, and other…
-
Coordinated RDP scans target Microsoft authentication servers in what experts call an alarming campaign. GreyNoise observed nearly 2,000 IPs probing Microsoft Remote Desktop Web Access portals in one day, far above the daily norm. Just days later, the number surged to over 30,000 unique IPs, signaling a serious reconnaissance effort. Timing-Based Enumeration The scans exploit…
-
Microsoft has issued urgent Microsoft Exchange patching advice in response to a high-severity vulnerability that threatens hybrid Exchange deployments. The flaw, tracked as CVE-2025-53786, could let attackers escalate privileges from on-premises servers into connected Microsoft 365 environments. The Cybersecurity and Infrastructure Security Agency (CISA) has backed Microsoft’s warning, issuing an emergency directive for immediate action.…
-
Microsoft investigates ongoing SharePoint Online access issues, aiming to identify and resolve disruptions affecting user connectivity and productivity.