Hacker News
- Midnight Blizzard Attack on Microsoft is ongoing https://msrc.microsoft.com/blog/2024/03/update-on-microsoft-actions-following-attack-by-nation-state-actor-midnight-blizzard/ 4 comments
- Microsoft Actions Following Attack by Nation State Actor Midnight Blizzard https://msrc.microsoft.com/blog/2024/03/update-on-microsoft-actions-following-attack-by-nation-state-actor-midnight-blizzard/ 7 comments
- Microsoft actions following attack by nation state actor Midnight Blizzard https://msrc.microsoft.com/blog/2024/01/microsoft-actions-following-attack-by-nation-state-actor-midnight-blizzard/ 188 comments
- What’s the Smallest Variety of CHERI? (2022) https://msrc.microsoft.com/blog/2022/09/whats-the-smallest-variety-of-cheri/ 11 comments
- Results of technical investigations for Storm-0558 key acquisition https://msrc.microsoft.com/blog/2023/09/results-of-major-technical-investigations-for-storm-0558-key-acquisition/ 192 comments
- Microsoft government email compromised (and quietly fixed) https://msrc.microsoft.com/blog/2023/07/microsoft-mitigates-china-based-threat-actor-storm-0558-targeting-of-customer-email/ 3 comments
- Microsoft Response to Layer 7 Distributed Denial of Service (DDoS) Attacks https://msrc.microsoft.com/blog/2023/06/microsoft-response-to-layer-7-distributed-denial-of-service-ddos-attacks/ 2 comments
- Windows Critical ICMP Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23415 13 comments
- Windows HTTP Protocol Stack RCE Vulnerability (CVE-2022-21907) https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-21907 2 comments
- Windows Print Spooler Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34481 66 comments
Lobsters
- Results of Major Technical Investigations for Storm-0558 Key Acquisition https://msrc.microsoft.com/blog/2023/09/results-of-major-technical-investigations-for-storm-0558-key-acquisition/ 3 comments security , windows
- First steps in CHERIoT Security Research https://msrc.microsoft.com/blog/2023/02/first-steps-in-cheriot-security-research/ 14 comments hardware , osdev , security
- CVE-2024-21413 - Microsoft Outlook Remote Code Execution Vulnerability - Severity 9.8 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21413 12 comments sysadmin
- Curl.exe Vulnerability (CVE-2023-38545 and CVE-2023-38546) https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-38545 10 comments sysadmin
- Actively Exploited Microsoft Word Zero-Day Vulnerability That Steals NTLM hashes... even in the preview pane https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36761 26 comments sysadmin
- Microsoft mitigates China-based threat actor Storm-0558 targeting of customer email | MSRC Blog https://msrc.microsoft.com/blog/2023/07/microsoft-mitigates-china-based-threat-actor-storm-0558-targeting-of-customer-email/ 12 comments netsec
- How to uninstall Print 3D from all computers in AD https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23378 3 comments windows10
- Microsoft's Guidance for investigating attacks using CVE-2023-23397 https://msrc.microsoft.com/blog/2023/03/microsoft-mitigates-outlook-elevation-of-privilege-vulnerability/ 3 comments sysadmin
- Microsoft Outlook CVE-2023-23397 - Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23397 132 comments sysadmin
- Value of RTF documents in email? https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21716 11 comments sysadmin
- Microsoft releases "Important" update for Windows and SQL Server for Remote Code Execution vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21799 7 comments sqlserver
- Palo Alto catching Linux NFS https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30136 9 comments sysadmin
- Automatically download Microsoft CVE List https://msrc.microsoft.com/update-guide/ 2 comments sysadmin
- Follina patch released. https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-30190 10 comments sysadmin
- BootHole Vulnerability https://msrc.microsoft.com/update-guide/en-US/vulnerability/ADV200011 5 comments sysadmin
- CVE-2022-26809 : Remote Procedure Call Runtime Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26809 3 comments netsec
- CVE-2022-23277 Microsoft Exchange Server Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-23277 21 comments sysadmin
- Windows AppX Installer Spoofing Vulnerability (CVE-2021-43890) https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43890 19 comments sysadmin
- Vulnerability found in Microsoft Visual Studio Tools for Applications 2017 - update? https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1721 5 comments sysadmin
- UPDATE: Microsoft Security Fix for PrintNightmare https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-36958 14 comments sysadmin
- CVE-2021-40444 - Microsoft MSHTML Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-40444 5 comments sysadmin
- Updated - NTLM Relay Attack PetitPotam https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-36942 10 comments sysadmin
- Vulnerability Portal down for third time in four days https://msrc.microsoft.com/ 5 comments microsoft
- NEW (7/15) print nightmare https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34481 19 comments sysadmin
- Print Spooler Saga Continues - CVE-2021-34481 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34481 90 comments sysadmin
- Out of Band Patch release for CVE-2021-34527 (PrintNightmare) https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34527 21 comments sysadmin