Lucene search
K

87 matches found

NVD
NVD
added 2025/09/12 6:15 p.m.11 views

CVE-2025-4234

A problem with the Palo Alto Networks Cortex XDR Microsoft 365 Defender Pack can result in exposure of user credentials in application logs. Normally, these application logs are only viewable by local users and are included when generating logs for troubleshooting purposes. This means that these...

2.4CVSS0.00126EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/12 5:18 p.m.18 views

CVE-2025-4234 Cortex XDR Microsoft 365 Defender Pack: Cleartext Exposure of Credentials

A problem with the Palo Alto Networks Cortex XDR Microsoft 365 Defender Pack can result in exposure of user credentials in application logs. Normally, these application logs are only viewable by local users and are included when generating logs for troubleshooting purposes. This means that these...

2.4CVSS0.00126EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/12 5:18 p.m.2 views

CVE-2025-4234 Cortex XDR Microsoft 365 Defender Pack: Cleartext Exposure of Credentials

A problem with the Palo Alto Networks Cortex XDR Microsoft 365 Defender Pack can result in exposure of user credentials in application logs. Normally, these application logs are only viewable by local users and are included when generating logs for troubleshooting purposes. This means that these...

2.4CVSS6.1AI score0.00126EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/10 12:0 a.m.4 views

PT-2025-37083

Name of the Vulnerable Software and Affected Versions: Cortex XDR Microsoft 365 Defender Pack affected versions not specified Description: The Cortex XDR Microsoft 365 Defender Pack may allow cleartext exposure of credentials. The severity of this issue is low. Recommendations: At the moment, the...

2.4CVSS6.2AI score0.00126EPSS
Exploits0References20
Microsoft KB
Microsoft KB
added 2024/08/13 7:0 a.m.186 views

August 13, 2024—KB5041160 (OS Build 20348.2655)

August 13, 2024—KB5041160 OS Build 20348.2655 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server 2022, see its update history page. Note Follow @WindowsUpdate to find out when...

9.8CVSS8.8AI score0.39457EPSS
Exploits4
Microsoft Secure
Microsoft Secure
added 2023/10/11 4:0 p.m.21 views

Microsoft Defender for Endpoint now stops human-operated attacks on its own

Defenders need every edge they can get in the fight against ransomware. Today, were pleased to announce that Microsoft Defender for Endpoint customers will now be able automatically to disrupt human-operated attacks like ransomware early in the kill chain without needing to deploy any other...

7.4AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/10/11 4:0 p.m.15 views

Microsoft Defender for Endpoint now stops human-operated attacks on its own

Defenders need every edge they can get in the fight against ransomware. Today, were pleased to announce that Microsoft Defender for Endpoint customers will now be able automatically to disrupt human-operated attacks like ransomware early in the kill chain without needing to deploy any other...

7.4AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2023/09/20 1:0 p.m.21 views

Microsoft 365 Defender demonstrates 100 percent protection coverage in the 2023 MITRE Engenuity ATT&CK® Evaluations: Enterprise

For the fifth consecutive year, Microsoft 365 Defender demonstrated industry-leading extended detection and response XDR capabilities in the independent MITRE Engenuity ATT&CK® Evaluations: Enterprise. The attack used during the test highlights the importance of a unified XDR platform and showcas...

7.1AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/09/20 1:0 p.m.8 views

Microsoft 365 Defender demonstrates 100 percent protection coverage in the 2023 MITRE Engenuity ATT&CK® Evaluations: Enterprise

For the fifth consecutive year, Microsoft 365 Defender demonstrated industry-leading extended detection and response XDR capabilities in the independent MITRE Engenuity ATT&CK® Evaluations: Enterprise. The attack used during the test highlights the importance of a unified XDR platform and showcas...

7.1AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2023/09/12 5:0 p.m.67 views

Malware distributor Storm-0324 facilitates ransomware access

The threat actor that Microsoft tracks as Storm-0324 is a financially motivated group known to gain initial access using email-based initial infection vectors and then hand off access to compromised networks to other threat actors. These handoffs frequently lead to ransomware deployment. Beginnin...

4.1CVSS7.3AI score0.12107EPSS
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/08/08 5:0 p.m.12 views

Microsoft Purview data security mitigations for BazaCall and other human-operated data exfiltration attacks

I recently worked with an enterprise customer who experienced a data exfiltration attack using the characteristics of the BazaCall campaign. BazaCall can be both a ransomware and data exfiltration attack that are used together to increase pressure on and damage to the victim. Microsoft Purview ha...

6.9AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2023/08/08 5:0 p.m.15 views

Microsoft Purview data security mitigations for BazaCall and other human-operated data exfiltration attacks

I recently worked with an enterprise customer who experienced a data exfiltration attack using the characteristics of the BazaCall campaign. BazaCall can be both a ransomware and data exfiltration attack that are used together to increase pressure on and damage to the victim. Microsoft Purview ha...

6.9AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2023/05/31 4:0 p.m.18 views

XDR meets IAM: Comprehensive identity threat detection and response with Microsoft

Identity has become the corporate security perimeter. The average organization used 130 different cloud applications in 2022. That’s up 18 percent from 2021 alone.1 And as organizations continue to embrace digital transformation and enable remote work, they look to identity and access management...

7.2AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/04/13 5:0 p.m.19 views

Threat actors strive to cause Tax Day headaches

Threat actors often take advantage of current events and major news headlines to align attacks and leverage social engineering when people could be more likely to be distracted or misled. Tax season is particularly appealing to threat actors because not only are people busy and under stress, but ...

6.9AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2023/04/13 5:0 p.m.27 views

Threat actors strive to cause Tax Day headaches

Threat actors often take advantage of current events and major news headlines to align attacks and leverage social engineering when people could be more likely to be distracted or misled. Tax season is particularly appealing to threat actors because not only are people busy and under stress, but ...

6.9AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2023/04/07 4:0 p.m.80 views

MERCURY and DEV-1084: Destructive attack on hybrid environment

April 2023 update – Microsoft Threat Intelligence has shifted to a new threat actor naming taxonomy aligned around the theme of weather. MERCURY is now tracked as Mango Sandstorm and DEV-1084 is now tracked as Storm-1084. To learn more about the new taxonomy represents the origin, unique traits,...

9.3CVSS10.2AI score0.99999EPSS
Exploits347
Microsoft Secure
Microsoft Secure
added 2023/03/28 3:30 p.m.37 views

Microsoft Secure: Explore innovations transforming the future of security

Building a more secure future requires an end-to-end approach. There is no question that technology plays an essential role, but security will always be human-centered. That’s what Microsoft Secure is all about. It’s about sharing knowledge, best practices, and technology innovations that empower...

6.9AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/03/13 4:0 p.m.98 views

DEV-1101 enables high-volume AiTM campaigns with open-source phishing kit

Adversary-in-the-middle AiTM phishing kits are part of an increasing trend that is observed supplanting many other less advanced forms of phishing. AiTM phishing is capable of circumventing multifactor authentication MFA through reverse-proxy functionality. DEV-1101 is an actor tracked by Microso...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2023/03/07 7:42 a.m.49 views

Shein's Android App Caught Transmitting Clipboard Data to Remote Servers

An older version of Shein's Android application suffered from a bug that periodically captured and transmitted clipboard contents to a remote server. The Microsoft 365 Defender Research Team said it discovered the problem in version 7.9.2 of the app that was released on December 16, 2021. The iss...

6.8AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/03/02 5:0 p.m.25 views

Microsoft is named a Leader in the 2022 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

The state of cybersecurity continues to challenge defenders around the world. With hybrid work here to stay and emerging trends like Ransomware as a Service, organizations need a partner that empowers them with not only modern endpoint security but an integrated solution that helps security...

7.2AI score
Exploits0
Rows per page
Query Builder