CISA flags critical Microsoft SCCM flaw as exploited in attacks

CISA ordered federal agencies on Thursday to secure their systems against a critical Microsoft Configuration Manager vulnerability patched in October 2024 and now exploited in attacks.

Attackers finally get around to exploiting critical Microsoft bug from 2024

As if admins haven't had enough to do this week Ignore patches at your own risk. According to Uncle Sam, a SQL injection flaw in Microsoft Configuration Manager patched in October 2024 is now being ...
eWeek

Fake AI Chrome Extensions Exposed 260,000 Users, Targeting Gmail

Over 260,000 users installed fake AI Chrome extensions that used iframe injection to steal browser and Gmail data, exposing ...
eWeek

OpenAI Debuts GPT-5.3-Codex-Spark, a Near-Instant AI for Real-Time Coding

Spark, a lightweight real-time coding model powered by Cerebras hardware and optimized for ultra-low latency performance.

Microsoft: I Like This Price And I Like This Strategy More Than The Stock

Microsoft Corporation is upgraded to Buy due to a strong moat and revenue growth with a 36% upside to $545 fair value. Read ...
The Hacker News

Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability

Active exploitation of BeyondTrust enables unauthenticated RCE as CISA adds Apple, Microsoft, SolarWinds, and Notepad++ flaws to KEV list.