Windows Is Under Attack, Microsoft Confirms — Act Now, CISA Warns
Key takeaways:
- Microsoft has confirmed multiple zero-day vulnerabilities in Windows that are actively being exploited before patches were released.
- The most critical flaw, CVE-2025-30397, affects all Windows versions and allows remote code execution through the Windows scripting engine.
- Successful exploitation of this vulnerability can happen via Internet Explorer Mode in Microsoft Edge, commonly used in enterprise systems.
- The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning advising immediate patching.
- Security experts stress this issue is high-risk despite Microsoft rating it "important," and urge all users to update without delay.
Added by
Frontend Developer — UI/UX Enthusiast and building scalable web apps
2 months ago
Forbes.comRelated
Microsoft makes new accounts passwordless by default in global push for passkeys
AI dev tools for Windows get a fresh coat of paint | TechCrunch
Signal's new Windows update prevents the system from capturing screenshots of chats | TechCrunch
Windows 11 gets some much-needed HDR improvements
Microsoft accidentally swapped Windows 11’s startup sound with Vista’s
RIP Microsoft Passwords: Here's How to Set Up a Passkey Before the August Deadline
Microsoft kills its Windows blue screen of death
Microsoft’s Free New Windows Upgrade: How It Works And How To Get It