Microsoft has announced the release of 126 security updates for April 2025, addressing a total of 126 CVEs. The recent updates cover a range of services and applications, including Visual Studio Code, Windows Standards-Based Storage Management Service, Windows Local Security Authority (LSA), Windows NTFS, Windows Routing and Remote Access Service (RRAS), Windows Update Stack, Windows Telephony Service, Windows DWM Core Library, Microsoft Edge (Chromium-based), Azure Local Cluster, Windows Hello, Windows BitLocker, Windows USB Print Driver, Windows Digital Media, Windows Cryptographic Services, Microsoft Office, Windows Kerberos, Windows Kernel, Windows Secure Channel, Windows Local Session Manager (LSM), Windows LDAP, Windows upnphost.dll, Windows Media, Windows Subsystem for Linux, Windows Remote Desktop Services, Windows Defender Application Control, and RPC Endpoint Mapper Service.

Microsoft has published the March 2025 security update release covering 57 Microsoft CVEs, which include the Windows exFAT File System, Azure Agent Installer, Windows MapUrlToZone, Windows Remote Desktop Services, .NET, Windows Win32 Kernel Subsystem, Microsoft Streaming Service, Windows Hyper-V, Azure CLI, Windows Routing and Remote Access Service (RRAS), Windows NTLM, Windows USB Video Driver, Windows Telephony Server, Microsoft Office, Windows Common Log File System Driver, Windows Mark of the Web (MOTW), Windows Kernel-Mode Drivers, ASP.NET Core & Visual Studio, Windows File Explorer, Microsoft Local Security Authority Server (lsasrv), Microsoft Office Excel, Windows Cross Device Service, Microsoft Office Word, Microsoft Office Access, Visual Studio Code, Microsoft Management Console, Microsoft Edge (Chromium-based), and Remote Desktop Client. Furthermore, 10 non-Microsoft CVEs have been republished.

Microsoft has announced the release of 63 security updates, addressing a range of vulnerabilities across various platforms including Windows 10, Windows DHCP Client, Windows Message Queuing, Windows Resilient File System (ReFS) Deduplication Service, Windows CoreMessaging, Azure Network Watcher, Windows Telephony Service, Microsoft Surface, Microsoft High Performance Compute Pack (HPC) Linux Node Agent, Windows Telephony Service, Windows Telephony Server, Visual Studio, Windows Routing and Remote Access Service (RRAS), Windows Internet Connection Sharing (ICS), Windows CoreMessaging, Windows Kernel, Windows Win32 Kernel Subsystem, Windows LDAP, Windows NTLM, Windows DHCP Server, Microsoft Office Excel, Windows Storage, Microsoft Office SharePoint, Windows DWM Core Library, Windows Ancillary Function Driver for WinSock, Windows Setup Files Cleanup, Windows Disk Cleanup Tool, Microsoft AutoUpdate (MAU), and Visual Studio Code.

Microsoft has issued 159 security updates for January 2025, addressing a range of vulnerabilities. The updates encompass a resolution for .NET, .NET Framework, Visual Studio, Microsoft Office Access, Power Automate, Windows MapUrlToZone, Active Directory Federation Services, Windows Recovery Environment Agent, Windows Connected Devices Platform Service, Windows Virtual Trusted Platform Module, Windows Boot Loader, Windows BitLocker, Windows Boot Manager, Windows Mark of the Web, Windows Kerberos, Windows Message Queuing, Windows Telephony Service, Line Printer Daemon Service (LPD), Windows Remote Desktop Services, Windows Digital Media, IP Helper, Windows PrintWorkflowUserSvc, and other related services.

Microsoft has issued 72 CVEs, including System Center Operations Manager, Microsoft Office, Microsoft Edge (Chromium-based), Microsoft Defender for Endpoint. Microsoft Office SharePoint, GitHub, Microsoft Office Word, Microsoft Office Excel, Windows Task Scheduler, Windows Mobile Broadband, Windows Kernel-Mode Drivers, Windows Remote Desktop Services, Windows Virtualization-Based Security (VBS) Enclave, Windows Resilient File System (ReFS), Windows PrintWorkflowUserSvc, Windows Message Queuing, Windows Wireless Wide Area Network Service, Windows LDAP - Lightweight Directory Access Protocol, and Wi Windows Remote Desktop Services.

The Microsoft November 2024 security update release includes 89 Microsoft CVEs, including Windows Package Library Manager, SQL Server, Microsoft Virtual Hard Drive, Windows SMBv3 Client/Server, Windows USB Video Driver, Windows DNS, Windows NTLM, Windows Registry, SQL Server,.NET and Visual Studio, Windows Update Stack, LightGBM, Azure CycleCloud, Azure Database for PostgreSQL, Windows Telephony Service, Windows NT OS Kernel, Windows Hyper-V, Windows VMSwitch, Windows Telephony Service, Windows DWM Core Library, Windows Kernel, Windows Secure Kernel Mode, Windows USB Video Driver, Windows DWM Core Library, Windows USB Video Driver, Windows Kerberos, Windows Registry, Windows SMB, Windows CSC Service, Windows Defender Application Control (WDAC), Windows SQL Server, Windows Active Directory Certificate Services, Windows Office Excel, Microsoft Graphics Component, Microsoft Office Word, Windows Task Scheduler, Microsoft Exchange Server, Azure Database for PostgreSQL, Visual Studio, Windows Win32 Kernel Subsystem, TorchGeo, Visual Studio Code, Microsoft PC Manager, and Airlift.microsoft.com. 

Microsoft has released 117 CVEs for October 2024, covering various aspects of Windows systems. These include Windows Hyper-V, Windows EFI Partition, Windows Kernel, OpenSSH for Windows, Azure Monitor, Windows Netlogon, Windows Kerberos, BranchCache, Azure Stack, Windows Routing and Remote Access Service (RRAS),.NET and Visual Studio, Windows Remote Desktop Licensing Service, Windows Remote Desktop Services, Microsoft Configuration Manager, Service Fabric, Power BI,.NET,.NET Framework, Visual Studio, Visual Studio Code, DeepSpeed, Windows Resilient File System (ReFS), Windows Common Log File System Driver, Windows Kernel, Microsoft Office SharePoint, Microsoft Office Excel, Microsoft Office Visio, BranchCache, Microsoft Graphics Component, Windows Kernel, Windows Standards-Based Storage Management Service, Windows BitLocker, Windows NTFS, Internet Small Computer Systems Interface (iSCSI), Windows Secure Kernel Mode, Microsoft ActiveX, Windows Telephony Server, Microsoft WDAC OLE DB provider for SQL, Windows Kernel, Windows Hyper-V, and Windows Local Security Authority.

The Microsoft September 2024 security update release is packed with 79 Microsoft CVEs. It's like a treasure trove of fixes for Windows TCP/IP, SQL Server, Security Zone Mapping, Windows Installer, and so much more.

Microsoft has announced the security updates for August 2024.

Microsoft has announced the security updates for July 2024.

Microsoft has announced the security updates for June 2024.

A security researcher handed Troy Hunt 122 GB of data obtained from numerous Telegram channels. This data contained 1,7k files, 2 billion lines of text, and 361 million distinct email addresses, passwords, and website URLs.

Attackers frequently use the data, also known as "combolists," to launch "credential stuffing" attacks. The data was sourced from 518 different channels and amounted to 1,748 separate files. The largest file, containing tens of millions of rows, appears to be the result of info-stealing malware that obtained credentials from compromised websites. The data was loaded into Have I Been Pwned (HIBP) today, as it contains a large amount of previously unseen email addresses.

Microsoft has announced the security updates for May 2024.

The April 2024 edition of Microsoft's security updates has been made available to the public. In total, there are 149 Microsoft CVEs included in this release.