Microsoft has released its June 2025 Patch Tuesday security updates, addressing multiple vulnerabilities across its products, including one that has been detected as exploited in the wild. Tracked as CVE-2025-33053, a vulnerability in WebDAV that could allow an unauthorized attacker to execute code over a network. A security researcher from Check Point Research has uncovered continue reading : Microsoft Releases June 2025 Patch Tuesday Security Updates

SentinelLabs of SentinelOne has observed and defended a malicious campaign targeting public sector organizations and global industries, including their own organization Based on the official blog released, there are 6 activities that have been observed and tracked to the activity of cluster PurpleHaze and ShadowPad. _____________________________ A. Nature of Malicious Campaign ShadowPad Cluster SentinelLabs has continue reading : ShadowPad and PurpleHaze: Cyberespionage Campaigns Targeting Government and Global Industries

A malicious campaign attributed to the APT group known as “Earth Lamia” has exploited weaknesses in web applications to gain access to organizations, using various techniques to steal information. The group has primarily targeted Brazil, India, and countries in Southeast Asia. Initially focused on financial services, Earth Lamia later shifted its attention to logistics and continue reading : Earth Lamia Targets Organizations in Brazil, India, and Southeast Asia

Microsoft has released its March 2025 Patch Tuesday security updates to address multiple vulnerabilities across its products, including six that have been detected as exploited in the wild (CVE-2025-24983, CVE-2025-24984, CVE-2025-24985, CVE-2025-24991, CVE-2025-24993 and CVE-2025-26633). Based on the official Microsoft release notes, there are 57 CVEs affecting Microsoft products, 6 of which are classified as continue reading : Microsoft Releases March 2025 Patch Tuesday Security Updates