Cve 2025 9696
The latest Cve 2025 9696 coverage — news, analysis, and updates from the WindowsNews.AI desk.
Urgent: Active Exploits Target SharePoint Deserialization Bug, CISA Orders Immediate Patching
CISA has added CVE-2026-45659, a critical SharePoint Server deserialization RCE flaw, to its Known Exploited Vulnerabilities Catalog with evidence of active exploitation. The vulnerability allows unauthenticated remote code execution and has been patched in Microsoft's June 2026 security updates. Organizations must apply the patch immediately or implement mitigations to avoid wide-scale network compromise.
IFI Techsolutions Clinches Fourth Straight Azure Expert MSP Renewal, Cementing Enterprise Cloud Credentials
IFI Techsolutions Limited has renewed its Microsoft Azure Expert MSP status for a fourth consecutive year, following a rigorous independent third-party audit. This achievement signals deep enterprise trust, mature cloud governance, and sustained technical excellence in managed Azure services. The renewal places the firm in an elite group of partners, underscoring the value of long-term certification for risk-averse enterprises navigating complex cloud environments.
81 Million Azure CLI Brute-Force Attempts Expose Critical MFA Gaps
Huntress detected an automated password-spray campaign targeting Azure CLI authentication with over 81 million sign-in attempts between June 12-26, 2026, exposing critical MFA gaps in conditional access policies. Organizations must urgently enforce MFA for all CLI access, secure service principals, and block legacy authentication to prevent cloud breaches. The attack highlights a systemic vulnerability in identity coverage across Microsoft Entra ID.
Huntress Launches Managed Identity Security Posture Management to Fortify Microsoft 365 Defenses
Huntress has released Managed Identity Security Posture Management (ISPM) as a generally available service starting June 30, 2026. The fully managed offering continuously hardens Microsoft 365 identity configurations for MSPs and SMBs, combining AI-driven automation with human SOC oversight to reduce identity risks like misconfigurations and excessive privileges.
Frost & Sullivan 2026 Radar: Microsoft Defender for Cloud Leads Runtime Security, Redefining Cloud Protection
Microsoft Defender for Cloud has been named a leader in Frost & Sullivan's 2026 Frost Radar for Cloud/Application Runtime Security, thanks to its integration with Defender XDR and robust real-time workload protection. This recognition underscores Microsoft's growing dominance in securing cloud-native and hybrid environments, directly benefiting Windows and Azure users with unified threat detection and automated response. The achievement validates Defender for Cloud as a top-tier runtime security platform that competes head-to-head with dedicated cloud security vendors.
Windows 10 Lives On: Microsoft Extends Consumer Security Updates Until October 2027
Microsoft has extended the consumer Extended Security Updates program for Windows 10, giving enrolled PCs another year of security patches until October 12, 2027. The move offers New Zealand businesses and users extra time to plan Windows 11 migrations while maintaining a supported operating system for a $30 fee.
Microsoft Quietly Extends Windows 10 Consumer Security Updates to 2027, But It’ll Cost You
Microsoft has quietly extended consumer Extended Security Updates for Windows 10 through October 12, 2027, giving users up to two years of paid security patches beyond the OS's end-of-support date. The program costs $30 for the first year, with pricing unannounced for the second, and applies only to critical vulnerabilities. While the move helps millions of unsupported PCs stay secure, it risks further fragmenting the Windows user base and slowing Windows 11 adoption.
Konica Minolta Brings CAC/PIV Secure Print to Microsoft 365 GCC High with PKI Cloud Suite
Konica Minolta launched the PKI Cloud Suite for Microsoft 365 GCC High, enabling CAC/PIV authenticated printing and scanning on bizhub MFPs with zero on-premises servers. The solution integrates natively with Entra ID and Universal Print, closing a critical zero-trust gap for defense and civilian agencies. It is available immediately through federal partners, with tiered licensing and a free upgrade path for existing customers.
FBI Alerts to Kali365 Phishing-as-a-Service Hijacking Microsoft 365 Accounts Using Device Codes
The FBI warns that the Kali365 phishing-as-a-service platform is exploiting Microsoft’s device-code flow to hijack Microsoft 365 accounts, bypassing MFA and conventional defenses. This in-depth article explains how the attack works, why it’s so effective against Windows-centric organizations, and what administrators and users can do to stop token theft before it happens.
Intel Ships Wi-Fi and Bluetooth Drivers 24.50.0 with Major 6GHz Boosts for Windows 11
Intel's new Wi-Fi 24.50.0 and Bluetooth 24.50.0 drivers for Windows 11 and 10 deliver faster 6GHz performance, improved roaming, and critical security fixes. The update boosts throughput, reduces latency, and resolves Bluetooth audio stuttering, making it a essential upgrade for Intel wireless adapter users.
Windows 10 Security Patch Lifeline Extended to October 2027 for Home Users
Microsoft has extended consumer Extended Security Updates for Windows 10 through October 12, 2027, giving home users a second year of post-retirement security patches. The program, expected to cost $30 per year, helps owners of incompatible PCs stay safe while buying time to upgrade. This rare consumer support expansion reflects the stubbornly high Windows 10 install base and rising regulatory pressure around e-waste.
IFI Techsolutions Secures Fourth Consecutive Azure Expert MSP Renewal, Proving Cloud Excellence
IFI Techsolutions Limited has renewed its Microsoft Azure Expert Managed Services Provider status for the fourth consecutive year after a rigorous independent audit. The achievement highlights the company’s deep Azure expertise and commitment to operational excellence, providing enterprises with a trusted partner for cloud managed services. This renewal reinforces the importance of audited certifications in a competitive cloud market.
Microsoft Defender in 2026: The Best Free Antivirus That Comes With Windows 11 — And Its Limits
Microsoft Defender in 2026 offers top-tier antivirus protection seamlessly integrated into Windows 11, making it sufficient for most home users. However, those needing extra services like VPNs, centralized business management, cross-platform support, or advanced ransomware remediation should consider a third-party suite. The decision hinges on individual risk profiles, not just malware detection scores.