Collecting Cyber-News from over 60 sources

Tag: microsoft

CISA flags critical Microsoft SCCM flaw as exploited in attacks

Feb 13, 2026 1:58 PM

Tags: attack, cisa, exploit, flaw, microsoft, vulnerability

CISA ordered federal agencies on Thursday to secure their systems against a critical Microsoft Configuration Manager vulnerability patched in October 2024 and now exploited in attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-flags-microsoft-configmgr-rce-flaw-as-exploited-in-attacks/
U.S. CISA adds SolarWinds Web Help Desk, Notepad++, Microsoft Configuration Manager, and Apple devices flaws to its Known Exploited Vulnerabilities catalog

Feb 13, 2026 10:58 AM

Tags: cisa, cybersecurity, exploit, flaw, infrastructure, kev, microsoft, vulnerability

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds SolarWinds Web Help Desk, Notepad++, Microsoft Configuration Manager, and Apple devices flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added SolarWinds Web Help Desk, Notepad++, Microsoft Configuration Manager, and Apple devices flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws…
Microsoft fixes bug that blocked Google Chrome from launching

Feb 13, 2026 10:58 AM

Tags: browser, chrome, control, google, microsoft, service, windows

Microsoft has fixed a known issue causing its Family Safety parental control service to block Windows users from launching Google Chrome and other web browsers. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-fixes-family-safety-bug-that-blocks-google-chrome-from-launching/
Add-in kompromittiert: Tausende Microsoft-Konten über Outlook gekapert

Feb 13, 2026 10:58 AM

Tags: microsoft

Ein Angreifer hat die Domain eines einst nützlichen Add-ins für Outlook übernommen und bei den Nutzern Zugangsdaten abgefischt. First seen on golem.de Jump to article: www.golem.de/news/add-in-kompromittiert-tausende-microsoft-konten-ueber-outlook-gekapert-2602-205367.html
CISA Issues Urgent Warning on Microsoft Configuration Manager SQL Injection Vulnerability Under Active Exploitation

Feb 13, 2026 9:58 AM

Tags: cisa, cyber, cybersecurity, exploit, flaw, infrastructure, injection, kev, microsoft, risk, sql, threat, vulnerability

The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical SQL injection vulnerability in Microsoft Configuration Manager to its Known Exploited Vulnerabilities (KEV) catalogue. The threat actors are actively exploiting the flaw in the wild. The addition signals immediate risk to organisations using the enterprise management platform. SQL Injection Enables Command Execution Tracked as…
Breach Roundup: CISA Flags OT Risks After Polish Grid Hack

Feb 13, 2026 12:58 AM

Tags: breach, cisa, fortinet, hacker, microsoft, risk, russia, service

Also: Spanish Hacker Granted Russian Asylum, Microsoft Patches Zero-Days. This week, a CISA warning, Nest footage in Nancy Guthrie case, Signal phishing. Spanish hacker, Russian asylum. Spanish ministry services offline. BYOVD ransomware. The Conduent breach hit Volvo. Microsoft patched zero-days. ZeroDayRAT targeted devices. The SmarterMail breach. Another Fortinet flaw. First seen on govinfosecurity.com Jump to…
Those ‘Summarize With AI’ Buttons May Be Lying to You

Feb 12, 2026 11:58 PM

Tags: ai, microsoft, tool

Microsoft uncovered AI recommendation poisoning in 31 companies across 14 industries, and turnkey tools make it trivially easy to pull off. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/summarize-ai-buttons-may-be-lying
Microsoft’s February Patch Tuesday Fixes 6 Zero-Days Under Attack

Feb 12, 2026 10:58 PM

Tags: attack, cisa, exploit, microsoft, office, update, vulnerability, windows, zero-day

Microsoft patches 58 vulnerabilities, including six actively exploited zero-days across Windows, Office, and RDP, as CISA sets a March 3 deadline. The post Microsoft’s February Patch Tuesday Fixes 6 Zero-Days Under Attack appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-microsoft-patch-tuesday-six-zero-days-february-2026/
New Windows LNK spoofing issues aren’t vulnerabilities

Feb 12, 2026 10:58 PM

Tags: malicious, microsoft, vulnerability, windows

Today, at Wild West Hackin’ Fest, security researcher Wietze Beukema disclosed multiple vulnerabilities in Windows LK shortcut files that allow attackers to deploy malicious payloads. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-new-windows-lnk-spoofing-issues-arent-vulnerabilities/
Those ‘Summarize With AI’ Buttons May Lying to You

Feb 12, 2026 10:58 PM

Tags: ai, microsoft, tool

Microsoft uncovered AI recommendation poisoning in 31 companies across 14 industries, and turnkey tools make it trivially easy to pull off. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/summarize-ai-buttons-may-be-lying
‘Dead’ Outlook add-in hijacked to phish 4,000 Microsoft Office Store users

Feb 12, 2026 8:58 PM

Tags: banking, breach, browser, chrome, control, credentials, credit-card, data, finance, google, infrastructure, malicious, marketplace, microsoft, office, password, phishing

outlook-one.vercel.app, hosted on the Vercel development platform, from which users download the software.”Microsoft reviews the manifest, signs it, and lists the add-in in their store. But the actual content the UI, the logic, everything the user interacts with is fetched live from the developer’s server every time the add-in opens,” said Koi Security’s researchers. By…
Windows Notepad Markdown feature opens door to RCE (CVE-2026-20841)

Feb 12, 2026 4:58 PM

Tags: cve, injection, microsoft, rce, remote-code-execution, update, vulnerability, windows

Among the many security fixes released by Microsoft on February 2026 Patch Tuesday is one for CVE-2026-20841, a command injection vulnerability in Notepad that could be … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/12/windows-notepad-markdown-feature-opens-door-to-rce-cve-2026-20841/
Windows Notepad Markdown feature opens door to RCE (CVE-2026-20841)

Feb 12, 2026 4:58 PM

Tags: cve, injection, microsoft, rce, remote-code-execution, update, vulnerability, windows

Among the many security fixes released by Microsoft on February 2026 Patch Tuesday is one for CVE-2026-20841, a command injection vulnerability in Notepad that could be … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/12/windows-notepad-markdown-feature-opens-door-to-rce-cve-2026-20841/
Windows Notepad Markdown feature opens door to RCE (CVE-2026-20841)

Feb 12, 2026 4:58 PM

Tags: cve, injection, microsoft, rce, remote-code-execution, update, vulnerability, windows

Among the many security fixes released by Microsoft on February 2026 Patch Tuesday is one for CVE-2026-20841, a command injection vulnerability in Notepad that could be … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/12/windows-notepad-markdown-feature-opens-door-to-rce-cve-2026-20841/
Windows Notepad Markdown feature opens door to RCE (CVE-2026-20841)

Feb 12, 2026 4:58 PM

Tags: cve, injection, microsoft, rce, remote-code-execution, update, vulnerability, windows

Among the many security fixes released by Microsoft on February 2026 Patch Tuesday is one for CVE-2026-20841, a command injection vulnerability in Notepad that could be … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/12/windows-notepad-markdown-feature-opens-door-to-rce-cve-2026-20841/
Phishing campaign chains old Office flaw with fileless XWorm RAT to evade detection

Feb 12, 2026 2:58 PM

Tags: access, control, credentials, data, ddos, detection, flaw, fortinet, Intruder, malicious, malware, microsoft, office, phishing, rat, risk, theft, tool

Fileless .NET stage and a modular XWorm core: Beyond initial access, Fortinet observed a fileless .NET stage loaded directly into memory, followed by process hollowing into msbuild.exe, a legitimate Microsoft build tool capable of executing .NET code. The choice of msbuild.exe aligns with the malware’s runtime requirements while helping it blend into normal system activity.”A…
Phishing campaign chains old Office flaw with fileless XWorm RAT to evade detection

Feb 12, 2026 2:58 PM

Tags: access, control, credentials, data, ddos, detection, flaw, fortinet, Intruder, malicious, malware, microsoft, office, phishing, rat, risk, theft, tool

Fileless .NET stage and a modular XWorm core: Beyond initial access, Fortinet observed a fileless .NET stage loaded directly into memory, followed by process hollowing into msbuild.exe, a legitimate Microsoft build tool capable of executing .NET code. The choice of msbuild.exe aligns with the malware’s runtime requirements while helping it blend into normal system activity.”A…
Phishing campaign chains old Office flaw with fileless XWorm RAT to evade detection

Feb 12, 2026 2:58 PM

Tags: access, control, credentials, data, ddos, detection, flaw, fortinet, Intruder, malicious, malware, microsoft, office, phishing, rat, risk, theft, tool

Fileless .NET stage and a modular XWorm core: Beyond initial access, Fortinet observed a fileless .NET stage loaded directly into memory, followed by process hollowing into msbuild.exe, a legitimate Microsoft build tool capable of executing .NET code. The choice of msbuild.exe aligns with the malware’s runtime requirements while helping it blend into normal system activity.”A…
Palo Alto closes privileged access gap with $25B CyberArk acquisition

Feb 12, 2026 1:58 PM

Tags: access, ai, cloud, control, detection, endpoint, governance, identity, intelligence, microsoft, network, okta, risk, threat, zero-trust

Customer impact and integration risks: While Palo Alto is integrating CyberArk’s capabilities into its security ecosystem, the company will continue to offer CyberArk’s identity security solutions as a standalone platform.This signals continuity and roadmap stability for existing customers in the near term. “Standalone CyberArk availability is expected to continue, now backed by Palo Alto’s global…
Swiss Cyber Security Days Coreview stärkt Tenant-Resilienz und Souveränität

Feb 12, 2026 1:58 PM

Tags: cyber, microsoft, resilience

Coreview zeigt auf den diesjährigen Swiss Cyber Security Days (17. und 18. Februar 2026 in Bern) seine Lösung zur Verbesserung der Resilienz von Microsoft-365. Am Stand (Halle 2.2, Stand A22) zeigen die Spezialisten, wie man den M365-Tenant als zentralen Baustein von Unternehmensinfrastrukturen vor Manipulationen an Konfigurationen schützen, übermäßige Administratorenrechte begrenzen und die Betriebskontinuität auch in…
Swiss Cyber Security Days Coreview stärkt Tenant-Resilienz und Souveränität

Feb 12, 2026 1:58 PM

Tags: cyber, microsoft, resilience

Coreview zeigt auf den diesjährigen Swiss Cyber Security Days (17. und 18. Februar 2026 in Bern) seine Lösung zur Verbesserung der Resilienz von Microsoft-365. Am Stand (Halle 2.2, Stand A22) zeigen die Spezialisten, wie man den M365-Tenant als zentralen Baustein von Unternehmensinfrastrukturen vor Manipulationen an Konfigurationen schützen, übermäßige Administratorenrechte begrenzen und die Betriebskontinuität auch in…
Azure, Microsoft 365 und Microsoft-Netzwerke automatisieren – Praxisorientierte Automatisierung mit Power Automate

Feb 12, 2026 12:59 PM

Tags: microsoft

First seen on security-insider.de Jump to article: www.security-insider.de/praxisorientierte-automatisierung-mit-power-automate-a-9a4c7e300cdcb4c820fb444b7efeded5/
How to Sign Authenticode Files with SignTool using KSP Library?

Feb 12, 2026 11:58 AM

Tags: microsoft, service, software, windows

Signing code is a critical process for maintaining software integrity and developer trust. On a Windows-based system, Authenticode signing provides assurance after a program or driver has been posted that it has not been modified. Using Microsoft SignTool and a Key Storage Provider (KSP) service such as DigiCert® KeyLocker, executed software, DLLs, and installers can”¦…
How to Sign Authenticode Files with SignTool using KSP Library?

Feb 12, 2026 11:58 AM

Tags: microsoft, service, software, windows

Signing code is a critical process for maintaining software integrity and developer trust. On a Windows-based system, Authenticode signing provides assurance after a program or driver has been posted that it has not been modified. Using Microsoft SignTool and a Key Storage Provider (KSP) service such as DigiCert® KeyLocker, executed software, DLLs, and installers can”¦…
Microsoft Store updated with a new CLI, analytics, and Web Installer improvements

Feb 12, 2026 11:58 AM

Tags: microsoft, tool, update, windows

Microsoft has introduced new developer tools, updates to developer analytics, and a Web Installer in the Microsoft Store on Windows to help developers build and scale apps on … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/12/microsoft-store-cli-command-line-interface/
Dank Microsofts Feature-Wahn: Sogar Notepad bekommt jetzt Schadcode-Lücken

Feb 12, 2026 9:58 AM

Tags: exploit, microsoft, windows

Der Windows-Texteditor Notepad ist längst nicht mehr so schlicht wie früher. Dank Markdown-Support können Angreifer Schadcode einschleusen. First seen on golem.de Jump to article: www.golem.de/news/dank-microsofts-feature-wahn-sogar-notepad-bekommt-jetzt-schadcode-luecken-2602-205315.html
What CISOs need to know about the OpenClaw security nightmare

Feb 12, 2026 8:58 AM

Tags: access, ai, api, attack, authentication, china, ciso, computer, control, corporate, credentials, email, endpoint, exploit, firewall, gartner, google, injection, mfa, microsoft, monitoring, network, open-source, openai, radius, risk, skills, startup, supply-chain, tool, vulnerability

OpenClaw exposes enterprise security gaps: The first big lesson of this whole OpenClaw situation is that enterprises need to do more to get their security fundamentals in place. Because if there are any gaps, anywhere at all, they will now be found and exploited at an unprecedented pace. In the case of OpenClaw, that means…
Microsoft Outlook Add-In Stolen 4000 Accounts and Credit Card Numbers

Feb 12, 2026 7:58 AM

Tags: breach, credentials, credit-card, cyber, data-breach, flaw, login, malicious, microsoft, office

A dormant Microsoft Outlook add-in has been weaponized by attackers to steal thousands of login credentials and credit card numbers. The incident, identified by security researchers as the first known malicious Office add-in found in the wild, exposed a critical flaw in how Microsoft distributes third-party tools. The >>Zombie<< App In 2022, a developer published…
Microsoft Outlook Add-In Stolen 4000 Accounts and Credit Card Numbers

Feb 12, 2026 7:58 AM

Tags: breach, credentials, credit-card, cyber, data-breach, flaw, login, malicious, microsoft, office

A dormant Microsoft Outlook add-in has been weaponized by attackers to steal thousands of login credentials and credit card numbers. The incident, identified by security researchers as the first known malicious Office add-in found in the wild, exposed a critical flaw in how Microsoft distributes third-party tools. The >>Zombie<< App In 2022, a developer published…
Microsoft Outlook Add-In Stolen 4000 Accounts and Credit Card Numbers

Feb 12, 2026 7:58 AM

Tags: breach, credentials, credit-card, cyber, data-breach, flaw, login, malicious, microsoft, office

A dormant Microsoft Outlook add-in has been weaponized by attackers to steal thousands of login credentials and credit card numbers. The incident, identified by security researchers as the first known malicious Office add-in found in the wild, exposed a critical flaw in how Microsoft distributes third-party tools. The >>Zombie<< App In 2022, a developer published…