Chinese state-sponsored actors are exploiting CVE-2025-59287, a critical WSUS flaw enabling unauthenticated RCE with SYSTEM privileges AhnLab reports attackers using PowerCat and certutil/curl to ...

The NSA, CISA, Australia's Cyber Security Centre, and Canada's Cyber Centre jointly released comprehensive security practices for Exchange hardening. Image: Envato If your team still runs Microsoft ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and National Security Agency (NSA), along with international partners from Australia and Canada, have released guidance to harden ...

Cybersecurity vendors are warning organizations that a critical vulnerability in Microsoft’s Windows Server Update Service (WSUS) and urging that they apply patches now that a proof-of-concept (POC) ...

More threat intel teams are sounding the alarm about a critical Windows Server Update Services (WSUS) remote code execution vulnerability, tracked as CVE-2025-59287 and now under active exploitation, ...

Security researchers at Huntress have discovered active exploitation of a remote code execution (RCE) vulnerability in Windows Server Update Services (WSUS) that Microsoft issued an out-of-band patch ...

Microsoft released emergency updates on Friday morning for a WSUS security vulnerability. It is now being attacked on the internet. Microsoft released emergency patches out of the ordinary on Friday ...

Governments and private security sleuths warned that attackers are already exploiting a critical bug in Microsoft Windows Server Update Services, shortly after ...

Governments and private security sleuths warned that attackers are already exploiting a critical bug in Microsoft Windows Server Update Services, shortly after Redmond pushed an emergency patch for ...

Enterprises urged to apply out-of-band patches to a range of Windows Server versions to fix Windows Server Update Service vulnerability Microsoft failed to fully fix earlier this month. Microsoft ...

Microsoft on Thursday released out-of-band security updates to patch a critical-severity Windows Server Update Services (WSUS) vulnerability with a proof-of-concept (Poc) exploit publicly available ...