CISA flags critical Microsoft SCCM flaw as exploited in attacks

CISA ordered federal agencies on Thursday to secure their systems against a critical Microsoft Configuration Manager vulnerability patched in October 2024 and now exploited in attacks.

Microsoft’s February Patch Tuesday Fixes 6 Zero-Days Under Attack

Microsoft patches 58 vulnerabilities, including six actively exploited zero-days across Windows, Office, and RDP, as CISA sets a March 3 deadline.
WinBuzzer

February 2026 Patch Tuesday: Microsoft Fixes 6 Active Zero-Days

Microsoft has patched six exploited zero-days in February 2026 Patch Tuesday, addressing 58 vulnerabilities and triggering ...

Microsoft fixes dozens of security flaws in Windows, Office, and Azure

This month's big batch of security updates addresses nearly 60 vulnerabilities across Microsoft's various products and ...

Microsoft Patch Day: Attackers exploit Windows and Word vulnerabilities

Important security updates have been released for Exchange Server, Hyper-V, Office, and Windows, among others. There are already attacks.

Microsoft starts the countdown for the end of Exchange Web Services

Microsoft has confirmed it will be phasing out Exchange Web Services (EWS) for Microsoft 365 and Exchange Online after nearly ...