Microsoft’s monthly Patch Tuesday is first in 6 months with no actively exploited zero-days
The vendor said six of the 83 vulnerabilities it addressed this month are more likely to be exploited.
Advertisement
Showing 10 of 68 results
-
A corporate logo for Microsoft hangs above the door to its office building on 8th Avenue on June 24, 2025, in New York City. (Photo by Gary Hershorn/Getty Images) Technology -
(Photo by John Smith/VIEWpress/Getty Images) Threats Microsoft Patch Tuesday matches last year’s zero-day high with six actively exploited vulnerabilities
Microsoft said three of the exploited vulnerabilities were publicly known, suggesting attackers already had details about the defects prior to Tuesday’s release.
-
(Jeenah Moon/Getty Images) Threats Microsoft Patch Tuesday addresses 112 defects, including one actively exploited zero-day
Researchers said the information disclosure zero-day exposes sensitive information that attackers can use to undermine defenses and make other exploits more reliable.
-
(Jeenah Moon/Getty Images) Threats Microsoft’s Patch Tuesday fixes 175 vulnerabilities, including two actively exploited zero-days
The tech giant addressed a record-high number of defects for the year in its latest update.
-
Citrix offices in Santa Clara, California. (Getty Images) Cybersecurity Citrix NetScaler customers hit by third actively exploited zero-day vulnerability since June
The vendor, which has been widely targeted, said the memory-overflow vulnerability can result in remote-code execution or denial of service.
-
The Apple Inc logo is displayed outside a retail store at the Third Street Promenade in Santa Monica, California on March 20, 2023. (Photo by PATRICK T. FALLON/AFP via Getty Images) Technology Apple discloses actively exploited zero-day affecting iOS, iPadOS and macOS
The defect, which affects the company’s most popular devices, has been exploited in an “extremely sophisticated attack against specific targeted individuals,” Apple said.
-
A corporate logo for Microsoft hangs above the door to its office building on 8th Avenue on June 24, 2025, in New York City. (Photo by Gary Hershorn/Getty Images) Technology Microsoft Patch Tuesday follows SharePoint attacks, Exchange server warnings
Despite serious alarm raised by officials, organizations have not applied the patch for Microsoft Exchange servers en masse.
-
Amit Yoran has been honored with our first-ever lifetime CyberScoop 50 award. (Tenable) CyberScoop50 CyberScoop 50 reveals 2025 winners; honors Amit Yoran with lifetime award
We are proud to pay tribute to Amit’s life — one filled with excellence, innovation, and resilience — in our 2025 CyberScoop 50 awards.
-
A view of the Microsoft corporate logo in front of the Microsoft Office building on 41st street and 8th avenue on July 19, 2024 in New York City. (Photo by Craig T Fruchtman/Getty Images) Ransomware Microsoft patches zero-day actively exploited in string of ransomware attacks
Microsoft said Storm-2460 has exploited the zero-day in the Windows Common Log File System to attack organizations in the U.S., Venezuela, Spain and Saudi Arabia.
-
spxChrome, Getty Images Threats Renew — but improve — billion-dollar cyber grant program to states and locals, House witnesses say
The program faces a number of challenges before it is set to expire, during a time where state and local governments face a bevy of cyber risks and changes.