News

Microsoft SharePoint under 'active exploitation,' Homeland Security's CISA says
Microsoft said the company has been "coordinating closely with CISA, DOD Cyber Defense Command, and key cybersecurity ...
JD Supra5h
EMIR 3 – the active account requirement
The latest revisions to the European Market Infrastructure Regulation (known as EMIR 3)1 brought about numerous changes affecting cleared ...
DataBreachToday3d
Golden dMSA Flaw Exposes Firms to Major Credential Theft
A critical cryptographic flaw in Windows Server 2025's delegated Managed Service Accounts, or dMSAs, allows attackers to ...
Microsoft SharePoint zero-day exploited in RCE attacks, no patch available
Critical zero-day vulnerabilities in Microsoft SharePoint, tracked as CVE-2025-53770 and CVE-2025-53771, have been actively ...
TMCnet5d
Semperis Research Uncovers Critical Flaw in Windows Server 2025 Exposing Managed Service Accounts to Golden dMSA Attack
To help further understanding of how this attack technique works in practice, Semperis Researcher Adi Malyanker built a tool called GoldenDMSA. The tool incorporates the logic of the attack, allowing ...