Microsoft has fixed an important-severity EoP bug in Windows Task Scheduler (CVE-2024-49039), which is being exploited in attacks.
Microsoft researchers have identified a new spear-phishing campaign by Russian threat actor Midnight Blizzard.
Attackers are exploiting a Microsoft SharePoint vulnerability that the company disclosed–and patched–in July.