Microsoft

Analysis of active exploitation of SolarWinds Web Help Desk

We are seeing exploitation of SolarWinds Web Help Desk via CVE‑2025‑40551 and CVE‑2025‑40536 that can lead to domain compromise; here is how to patch, hunt, and mitigate now.

After years of warnings, Microsoft is finally pulling the plug on EWS

Legacy email integrations, third-party apps, and in-house tools must move to Microsoft Graph before EWS is disabled for good.
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

Microsoft to shut down Exchange Online EWS in April 2027

Microsoft announced today that the Exchange Web Services (EWS) API for Exchange Online will be shut down in April 2027, after ...

Cold snap can slow, but not eliminate, Florida's invasive species

Cozy climate and other factors align in Florida to make the state Earth’s playground for the most established, invasive ...