🚨 CISA KEV 1[−]
9 Apr KEVCISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-53197 Linux Kernel Out-of-Bounds Access Vulnerability CVE-2024-53150 Linux Kernel Out-of-Bounds Read Vulnerability These types of vulne…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 43[−]
9 AprCVE-2025-26663 Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-26665 Windows upnphost.dll Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-26669 Windows Routing and Remote Access Service (RRAS) Information Disclosure VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-26668 Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-26686 Windows TCP/IP Remote Code Execution VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-26687 Win32k Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-26688 Microsoft Virtual Hard Disk Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27471 Microsoft Streaming Service Denial of Service VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27473 HTTP.sys Denial of Service VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27472 Windows Mark of the Web Security Feature Bypass VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27477 Windows Telephony Service Remote Code Execution VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27478 Windows Local Security Authority (LSA) Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27741 NTFS Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27742 NTFS Information Disclosure VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-29824 Windows Common Log File System Driver Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-24073 Microsoft DWM Core Library Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-21197 Windows NTFS Information Disclosure VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-21191 Windows Local Security Authority (LSA) Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-21205 Windows Telephony Service Remote Code Execution VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-21204 Windows Process Activation Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-21221 Windows Telephony Service Remote Code Execution VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-21222 Windows Telephony Service Remote Code Execution VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-26637 BitLocker Security Feature Bypass VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-26641 Microsoft Message Queuing (MSMQ) Denial of Service VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-26648 Windows Kernel Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-26670 Lightweight Directory Access Protocol (LDAP) Client Remote Code Execution VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-26672 Windows Routing and Remote Access Service (RRAS) Information Disclosure VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-26673 Windows Lightweight Directory Access Protocol (LDAP) Denial of Service VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-26679 RPC Endpoint Mapper Service Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27469 Windows Lightweight Directory Access Protocol (LDAP) Denial of Service VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27484 Windows Universal Plug and Play (UPnP) Device Host Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27481 Windows Telephony Service Remote Code Execution VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27483 NTFS Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27487 Remote Desktop Client Remote Code Execution VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27489 Azure Local Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27491 Windows Hyper-V Remote Code Execution VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27727 Windows Installer Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27733 NTFS Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27735 Windows Virtualization-Based Security (VBS) Security Feature Bypass VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27737 Windows Security Zone Mapping Security Feature Bypass VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-27738 Windows Resilient File System (ReFS) Information Disclosure VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-29809 Windows Kerberos Security Feature Bypass VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
9 AprCVE-2025-29810 Active Directory Domain Services Elevation of Privilege VulnerabilityThe security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 8[−]
9 AprCritical Security Updates and Identity Management InsightsIn this episode of Cybersecurity Today, host Jim Love covers important security updates and warnings including critical flaws in WinRAR, a patch for a high severity zero-day vulnerability in Windows CLFS, and a security vulnerability in WhatsApp's Windows desktop application. He …CYBERSECURITYTODAY.LIBSYN.COM
9 Apr KEVIndustrial-strength April Patch Tuesday covers 135 CVEsOne actively exploited issue patched; five Critical-severity Office vulns exploitable via Preview PaneSOPHOS.COM
9 Apr KEVPatch Tuesday, April 2025 EditionMicrosoft today released updates to plug at least 121 security holes in its Windows operating systems and software, including one vulnerability that is already being exploited in the wild. Eleven of those flaws earned Microsoft's most-dire "critical" rating, meaning malware or ma…KREBSONSECURITY.COM
9 AprHow cyberattackers exploit domain controllers using ransomwareRead how cyberattackers exploit domain controllers to gain privileged system access where they deploy ransomware that causes widespread damage and operational disruption. The post How cyberattackers exploit domain controllers using ransomware appeared first on Microsoft Security …MICROSOFT.COM
9 AprNews alert: Gcore launches Super Transit – accelerated DDoS protection to safeguard enterprisesLuxembourg, Luxembourg, Apr. 9, 2025, CyberNewswire — Gcore , the global edge AI, cloud, network, and security solutions provider, has launched Super Transit, a cutting-edge DDoS protection and acceleration feature, designed to safeguard enterprise infrastructure while deli…LASTWATCHDOG.COM
9 AprGetShared phishing | Kaspersky official blogScammers are exploiting GetShared for attacks, disguising malicious emails as legitimate inquiries.KASPERSKY.COM
9 Apr KEVGoogle fixes two Android zero-day bugs actively exploited by hackerssubmitted by cm0002 to cybersecurity 21 points | 0 comments https://techcrunch.com/2025/04/08/google-fixes-two-android-zero-day-bugs-actively-exploited-by-hackers/INFOSEC.PUB
9 AprRisky Business #787 -- Trump fires NSA director, CISA cuts inboundOn this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news: Oracle quietly cops to being hacked, but immediately pivots into pretending it didn’t matter NSA and CyberCom leaders fired for not being MAGA enough US Treasury had some dusty corners it had…RISKY.BIZ
📢 SECURITY ADVISORIES 1[−]
9 AprSenator puts hold on Trump’s nominee for CISA director, citing telco security ‘cover up’Sean Plankey's nomination to head up CISA will be blocked, for now.TECHCRUNCH.COM
🔥 INCIDENT REPORTING 3[−]
9 AprTrend Vision One™ Now Supports Azure vTAPEffective April 2025, Microsoft is launching their Azure vTAP and integrating it with Trend Vision One Network Detection and Response solution. This integration allows organizations to gain deep visibility into cloud network traffic without compromising performance. It ensures re…TRENDMICRO.COM
9 AprQraved - 984,519 breached accountsIn July 2021, the Indonesian restaurant website Qraved suffered a data breach that was later redistributed as part of a larger corpus of data . The breach exposed almost 1M unique email addresses along with names, phone numbers, dates of birth and passwords stored as MD5 hashes.HAVEIBEENPWNED.COM
9 AprSo your friend has been hacked: Could you be next?When a ruse puts on a familiar face, your guard might drop, making you an easy mark. Learn how to tell a friend apart from a foe.WELIVESECURITY.COM
🕵️ THREAT INTELLIGENCE 6[−]
9 AprHow to Leak to a JournalistNeiman Lab has some good advice on how to leak a story to a journalist.SCHNEIER.COM
9 AprStopping attacks against on-premises Exchange Server and SharePoint Server with AMSIExchange Server and SharePoint Server are business-critical assets and considered crown-jewels for many organizations, making them attractive targets for attacks. To help customers protect their environments and respond to these attacks, Exchange Server and SharePoint Server inte…MICROSOFT.COM
9 AprCreating a Large Text File Viewer by Vibe Coding with Visual Studio Code, Cline, OpenRouter, and Claude 3.7I just created another Windows 10/11 application using AI. This is a follow-up to the SquareCap program I posted about a few weeks ago . The problem I was trying to solve this time was opening and searching extremely large text files. I used to use the old Mandiant …TAOSECURITY.BLOGSPOT.COM
9 AprTrends-To-Watch Q&A: The future of edge—will decentralization ever be more than a talking point?For decades, a handful of tech giants have shaped digital infrastructure—and, with it, how businesses and governments manage data, security, and connectivity. Related: Practical uses for edge computing Now, the rise of distributed edge computing is being touted as a … (more…LASTWATCHDOG.COM
9 AprNew Frontier of GenAI Threats: A Comprehensive Guide to Prompt AttacksA comprehensive, adaptive and insightful view into prompt attacks against GenAI systems, a framework for defending against emerging threats in AI security. The post New Frontier of GenAI Threats: A Comprehensive Guide to Prompt Attacks appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
9 AprWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 5 points | 4 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
🌐 CYBER THREAT LANDSCAPE 2[−]
9 AprCourt document reveals locations of WhatsApp victims targeted by NSO spywareThe list of 1,223 victims in 51 countries hints at the “true scale of the spyware problem,” per one researcher.TECHCRUNCH.COM
9 AprGovernments identify dozens of Android apps bundled with spywareThe advisories say the spyware apps are used to target members of civil society who may oppose China’s state interests.TECHCRUNCH.COM
🎙️ PODCASTS 1[−]
9 AprSmashing Security podcast #412: Signalgate sucks, and the quandary of quishingQR codes are being weaponised by scammers — so maybe think twice before scanning that parking meter. And in a blunder so dumb it makes autocorrect look smart, the White House explains how it leaked war plans on Signal because an iPhone mistook a journalist for a government inside…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 2[−]
9 AprLovable AI Found Most Vulnerable to VibeScamming — Enabling Anyone to Build Live Scam PagesLovable, a generative artificial intelligence (AI) powered platform that allows for creating full-stack web applications using text-based prompts, has been found to be the most susceptible to jailbreak attacks, allowing novice and aspiring cybercrooks to set up lookalike credenti…THEHACKERNEWS.COM
9 AprOpenAI helps spammers plaster 80,000 sites with messages that bypassed filtersCompany didn't notice its chatbot was being abused for (at least) 4 months.ARSTECHNICA.COM