VULNCRITICAL

SharePoint Critical RCE via Cryptographic Signature Flaw: The Token Danger

CVE-2026-50522 enables unauthenticated remote code execution on SharePoint Server by bypassing cryptographic verification on session t…

Jul 17, 2026views - 1.4k

CYBERSECCRITICAL

SharePoint On-Premises Under Attack: Three Days to Patch Actively Exploited RCE

Microsoft confirmed active exploitation of CVE-2026-58644 in SharePoint Server on-premises. CISA added the flaw to the KEV catalog wit…

Jul 17, 2026views - 1.2k

CYBERSEC

Windows WMI: ZDI-26-415 Vulnerability Allows Escalation to SYSTEM

CVE-2026-49805 in Windows WMI Providers enables local privilege escalation to SYSTEM. Microsoft has released patches and rates exploit…

Jul 17, 2026views - 1.3k

VULNZERO-DAY

ZDI-26-416: Hyper-V netvsc.sys Bug Lets Local VM Attacker Escalate to Kernel

The ZDI-26-416 vulnerability in Microsoft Hyper-V's netvsc.sys driver allows a low-privilege attacker inside a Windows VM to escalate…

Jul 17, 2026views - 1.5k

microsoftZERO-DAY

Microsoft July 2026 Patch Tuesday: Record Vulnerability Volume Forces a Reckoning

Microsoft's July 2026 Patch Tuesday delivers a record-breaking number of vulnerabilities. Two zero-days are already under active explo…

Jul 14, 2026views - 1.3k

CYBERSEC

Microsoft Revokes 11 Legacy UEFI Shims: Secure Boot Bypassed via Signed Bootloaders

Eleven Microsoft-signed UEFI shim bootloaders allowed Secure Boot bypass on any trusting system. Revocation arrived with the June 2026…

Jul 14, 2026views - 1.3k

CYBERSECZERO-DAY

SharePoint JWT Bypass and the AI Agent That Rewrites Zero-Day Discovery

Microsoft patched a SharePoint authentication bypass (CVE-2026-55040) discovered by Rapid7 using agentic AI. The CVSS 5.3 rating masks…

Jul 14, 2026views - 1.3k

ransomware

GodDamn Ransomware Uses Microsoft-Signed Driver to Disable EDR

The GodDamn ransomware, a rebrand of the Hyadina family, leverages the PoisonX driver — signed with a valid Microsoft Windows Hardware…

Jul 10, 2026views - 1k

CYBERSEC

Microsoft: AI Will Make Patch Tuesday Permanently More Demanding

Microsoft EVP Pavan Davuluri confirmed on July 9, 2026 that AI will permanently increase the volume of security updates in each Patch…

Jul 10, 2026views - 1.7k

CYBERSECZERO-DAY

Microsoft Patches RoguePlanet: When the Antivirus Becomes the Attack Surface

CVE-2026-50656 enables privilege escalation to SYSTEM via the Microsoft Defender engine. The fix arrives through an automatic engine u…

Jul 09, 2026views - 1.4k

ransomware

Hyadina Strikes with GodDamn: Microsoft-Signed Driver Disables EDR in 24 Hours

The Hyadina ransomware-as-a-service group deploys a new locker, GodDamn, using the Microsoft-signed PoisonX kernel driver to neutraliz…

Jul 09, 2026views - 1.9k

CYBERSEC

Vishing 2.0 Hits Teams: Fake IT Support Calls Deploy EtherRAT

Palo Alto Networks Unit 42 uncovered a campaign that abuses Microsoft Teams voice calls to impersonate corporate IT support and trick…

Jul 06, 2026views - 1.5k