Insights

Windows 365 exposes Microsoft Azure credentials in plaintext

The vulnerable feature is included in Windows 365’s Enterprise Mobility + Security (EMS) suite. EMS is designed to provide secure access for users to corporate resources such as..

Microsoft fixes Azure AD authentication flaw

The issue, which was discovered by security researchers from CyberArk Labs, affects organisations using Azure AD Connect, the cloud-based identity and access management service..

Microsoft June 2023 Patch Tuesday fixes 78 flaws, 38 RCE bugs

The highest severity bug patched this month is a critical RCE vulnerability found in the Microsoft Video Control component of Windows Server. The flaw can be triggered remotely..

January's Patch Tuesday Rings in with Nearly 100 Vulnerabilities

IT and security teams should prioritize CVE-2023-21674, an important and actively exploited zero-day vulnerability in Windows Advanced Local Procedure Call (ALPC) that allows for..

April Sees 101 Vulnerabilities Patched

Microsoft's April 2023 Patch Tuesday, and security updates fix one actively exploited zero-day vulnerability and a total of 97 flaws. Seven vulnerabilities have been classified as..

Two New Zero-days Unleashed in March's Patch Tuesday

CVE-2023-23397 – Microsoft Outlook Elevation of Privilege Vulnerability [CRITICAL ZERO-DAY] CVE-20223-23397 is an actively exploited zero-day vulnerability in Microsoft Outlook..