News

Hackers exploited Windows WebDav zero-day to drop malware
An APT hacking group known as 'Stealth Falcon' exploited a Windows WebDav RCE vulnerability in zero-day attacks since March ...
SecurityWeek5d
Microsoft Patch Tuesday Covers WebDAV Flaw Marked as ‘Already Exploited’
Redmond warns that external control of a file name or path in WebDAV "allows an unauthorized attacker to execute code over a ...
Krebs on Security6d
Patch Tuesday, June 2025 Edition
Microsoft today released security updates to fix at least 67 vulnerabilities in its Windows operating systems and software.
The Hacker News4d
Microsoft Patches 67 Vulnerabilities Including WEBDAV Zero-Day Exploited in the Wild
Microsoft patches 67 vulnerabilities, including a WEBDAV zero-day actively exploited by Stealth Falcon. Critical for enterprise security.
CSO Online4d
June Patch Tuesday advice for CSOs: Defense-in-depth needed to stop RCEs
CVE-2025-47172 , a remote code execution vulnerability in Microsoft SharePoint Server. With a CVSS score of 8.8, he said this ...
Ars Technica4y
WebDAV woes
WebDAV _is_ going to be slower, typically, as it's all running over HTTP calls, rather than a more optimized connection intended for lower latency transactions. More calls back and forth than ...
Network World14y
‘WebDaV is bad,’ says security researcher
Should we hate WebDAV for security reasons? Yes, says eEye Digital Security, which today focuses a wrathful gaze on WebDAV (short for “Web-based Distributed Authoring and Versioning,” the IETF ...