Experimental News Clipping Site

Tag: Microsoft

  • Krebs on Security: Microsoft: Happy 2025. Here’s 161 Security Updates

    by

    Kurt Seifried
    in

    Source URL: https://krebsonsecurity.com/2025/01/microsoft-happy-2025-heres-161-security-updates/ Source: Krebs on Security Title: Microsoft: Happy 2025. Here’s 161 Security Updates Feedly Summary: Microsoft today unleashed updates to plug a whopping 161 security vulnerabilities in Windows and related software, including three “zero-day" weaknesses that are already under active attack. Redmond’s inaugural Patch Tuesday of 2025 bundles more fixes than the company…

  • Alerts: CISA Adds Four Known Exploited Vulnerabilities to Catalog

    by

    Kurt Seifried
    in

    Source URL: https://www.cisa.gov/news-events/alerts/2025/01/14/cisa-adds-four-known-exploited-vulnerabilities-catalog Source: Alerts Title: CISA Adds Four Known Exploited Vulnerabilities to Catalog Feedly Summary: CISA has added four vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-55591 Fortinet FortiOS Authorization Bypass Vulnerability CVE-2025-21333 Microsoft Windows Hyper-V NT Kernel Integration VSP Heap-based Buffer Overflow Vulnerability CVE-2025-21334 Microsoft Windows Hyper-V NT…

  • Cisco Talos Blog: Microsoft Patch Tuesday for January 2025 — Snort rules and prominent vulnerabilities

    by

    Kurt Seifried
    in

    Source URL: https://blog.talosintelligence.com/january-patch-tuesday-release/ Source: Cisco Talos Blog Title: Microsoft Patch Tuesday for January 2025 — Snort rules and prominent vulnerabilities Feedly Summary: Microsoft has released its monthly security update for January of 2025 which includes 159 vulnerabilities, including 10 that Microsoft marked as “critical.” The remaining vulnerabilities listed are classified as “important.”  AI Summary and…

  • Microsoft Security Blog: 3 takeaways from red teaming 100 generative AI products

    by

    Kurt Seifried
    in

    Source URL: https://www.microsoft.com/en-us/security/blog/2025/01/13/3-takeaways-from-red-teaming-100-generative-ai-products/ Source: Microsoft Security Blog Title: 3 takeaways from red teaming 100 generative AI products Feedly Summary: Since 2018, Microsoft’s AI Red Team has probed generative AI products for critical safety and security vulnerabilities. Read our latest blog for three lessons we’ve learned along the way. The post 3 takeaways from red teaming…

  • Microsoft Security Blog: Analyzing CVE-2024-44243, a macOS System Integrity Protection bypass through kernel extensions

    by

    Kurt Seifried
    in

    Source URL: https://www.microsoft.com/en-us/security/blog/2025/01/13/analyzing-cve-2024-44243-a-macos-system-integrity-protection-bypass-through-kernel-extensions/ Source: Microsoft Security Blog Title: Analyzing CVE-2024-44243, a macOS System Integrity Protection bypass through kernel extensions Feedly Summary: Microsoft discovered a macOS vulnerability allowing attackers to bypass System Integrity Protection (SIP) by loading third party kernel extensions, which could lead to serious consequences, such as allowing attackers to install rootkits, create persistent…

  • The Register: With AI boom in full force 2024 datacenter deals reach $57B record

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/01/14/2024_datacenter_deals/ Source: The Register Title: With AI boom in full force 2024 datacenter deals reach $57B record Feedly Summary: Fewer giant deals, but many more smaller ones, in bit barn feeding frenzy Datacenter merger activity soared to new heights in 2024, with $57 billion in deals closed over the 12 months. If you’re…

  • CSA: What Are the Top Cybersecurity Threats of 2025?

    by

    Kurt Seifried
    in

    Source URL: https://cloudsecurityalliance.org/blog/2025/01/14/the-emerging-cybersecurity-threats-in-2025-what-you-can-do-to-stay-ahead Source: CSA Title: What Are the Top Cybersecurity Threats of 2025? Feedly Summary: AI Summary and Description: Yes **Summary:** The text outlines the top 10 emerging cybersecurity threats anticipated for 2025, emphasizing the evolving tactics of cybercriminals and the necessity for organizations to adopt proactive security measures. Key threats include sophisticated ransomware,…

  • The Register: Microsoft re-orgs to create ‘CoreAI – Platform and Tools’ software engineering team

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/01/13/microsoft_corea_team_reorg/ Source: The Register Title: Microsoft re-orgs to create ‘CoreAI – Platform and Tools’ software engineering team Feedly Summary: Nad lad reckons 30 years of change is happening in three years as apps and services go ‘agentic’ Microsoft has revealed it’s created an engineering team that CEO Satya Nadella feels is needed to…

  • The Register: Microsoft sues ‘foreign-based’ criminals, seizes sites used to abuse AI

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/01/13/microsoft_sues_foreignbased_crims_seizes/ Source: The Register Title: Microsoft sues ‘foreign-based’ criminals, seizes sites used to abuse AI Feedly Summary: Crooks stole API keys, then started a hacking-as-a-service biz Microsoft has sued a group of unnamed cybercriminals who developed tools to bypass safety guardrails in its generative AI tools. The tools were used to create harmful…

  • The Register: Azure and M365 MFA outage locks out users across regions

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/01/13/azure_m365_outage/ Source: The Register Title: Azure and M365 MFA outage locks out users across regions Feedly Summary: It’s sorted out (mostly), but European users had a manic Monday Microsoft’s multi-factor authentication (MFA) for Azure and Microsoft 365 (M365) was offline for four hours during Monday’s busy start for European subscribers.… AI Summary and…