SecQube | Harvey | AI Platform for MS Graph
@secqube.com
We provide managed providers with cost-reducing solutions through a user-friendly, multi-tenant, AI-driven system that enables automated KQL triaging. Connecting to the Microsoft Graph, allowing smooth integration with the Unified Portal and Sentinel.
Microsoft Silently Patches Windows LNK Flaw After Years of Active Exploitation scq.ms/4otvrRv
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
Microsoft Silently Patches Windows LNK Flaw After Years of Active Exploitation
Microsoft fixes the Windows LNK flaw CVE-2025-9491, a bug exploited by multiple state groups since 2017.
scq.ms
December 4, 2025 at 11:43 AM
Microsoft Silently Patches Windows LNK Flaw After Years of Active Exploitation scq.ms/4otvrRv
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
Microsoft Silently Patches Windows LNK Flaw After Years of Active Exploitation scq.ms/4otvrRv #cybersecurity #SecQube
Microsoft Silently Patches Windows LNK Flaw After Years of Active Exploitation
Microsoft Silently Patches Windows LNK Flaw After Years of Active Exploitation
Read more
Published Date:
Dec 03, 2025 (3 hours, 12 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-9491
thehackernews.com
December 4, 2025 at 10:34 AM
Microsoft Silently Patches Windows LNK Flaw After Years of Active Exploitation scq.ms/4otvrRv #cybersecurity #SecQube
Longwatch RCE Vulnerability Let Attackers Execute Remote Code With Elevated Privileges scq.ms/3KABaal #cybersecurity #SecQube
Longwatch RCE Vulnerability Let Attackers Execute Remote Code With Elevated Privileges
Longwatch RCE Vulnerability Let Attackers Execute Remote Code With Elevated Privileges
Read more
Published Date:
Dec 03, 2025 (3 hours, 8 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-13658
cybersecuritynews.com
December 4, 2025 at 6:33 AM
Longwatch RCE Vulnerability Let Attackers Execute Remote Code With Elevated Privileges scq.ms/3KABaal #cybersecurity #SecQube
Critical RSC Bugs in React and Next.js Allow Unauthenticated Remote Code Execution scq.ms/3KBxUeO #cybersecurity #SecQube
Critical RSC Bugs in React and Next.js Allow Unauthenticated Remote Code Execution
Critical RSC Bugs in React and Next.js Allow Unauthenticated Remote Code Execution
Read more
Published Date:
Dec 03, 2025 (2 hours, 39 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-66478
CVE-2025-55182
thehackernews.com
December 4, 2025 at 2:38 AM
Critical RSC Bugs in React and Next.js Allow Unauthenticated Remote Code Execution scq.ms/3KBxUeO #cybersecurity #SecQube
Watching the London councils cyber incident unfold brings up bigger questions.
Not “who did it” but how quickly was it detected.
How long were attackers inside?
Was the alert lost in noise?
Did shared IT reduce visibility?
The weakest link isn’t the breach.
It’s the time before anyone realises.
Not “who did it” but how quickly was it detected.
How long were attackers inside?
Was the alert lost in noise?
Did shared IT reduce visibility?
The weakest link isn’t the breach.
It’s the time before anyone realises.
December 2, 2025 at 4:00 PM
Watching the London councils cyber incident unfold brings up bigger questions.
Not “who did it” but how quickly was it detected.
How long were attackers inside?
Was the alert lost in noise?
Did shared IT reduce visibility?
The weakest link isn’t the breach.
It’s the time before anyone realises.
Not “who did it” but how quickly was it detected.
How long were attackers inside?
Was the alert lost in noise?
Did shared IT reduce visibility?
The weakest link isn’t the breach.
It’s the time before anyone realises.
Europe wants stronger guarantees around privacy, sovereignty and data control. SecQube is looking for a European partner aligned with protecting European data.
We deploy into the same regional data centre you use. Your data stays in your region.
Partner with us:
www.secqube.com/en-gb/secqub...
We deploy into the same regional data centre you use. Your data stays in your region.
Partner with us:
www.secqube.com/en-gb/secqub...
November 28, 2025 at 12:00 PM
Europe wants stronger guarantees around privacy, sovereignty and data control. SecQube is looking for a European partner aligned with protecting European data.
We deploy into the same regional data centre you use. Your data stays in your region.
Partner with us:
www.secqube.com/en-gb/secqub...
We deploy into the same regional data centre you use. Your data stays in your region.
Partner with us:
www.secqube.com/en-gb/secqub...
Cybersecurity is more than speed or automation.
It’s confidence.
Where your data lives.
Who can access it.
How it’s processed.
Whether it ever leaves your region.
SecQube keeps it region-locked and protected.
Confidence, Delivered.
Find out more today 👉 www.secqube.com/
It’s confidence.
Where your data lives.
Who can access it.
How it’s processed.
Whether it ever leaves your region.
SecQube keeps it region-locked and protected.
Confidence, Delivered.
Find out more today 👉 www.secqube.com/
November 26, 2025 at 11:00 AM
Cybersecurity is more than speed or automation.
It’s confidence.
Where your data lives.
Who can access it.
How it’s processed.
Whether it ever leaves your region.
SecQube keeps it region-locked and protected.
Confidence, Delivered.
Find out more today 👉 www.secqube.com/
It’s confidence.
Where your data lives.
Who can access it.
How it’s processed.
Whether it ever leaves your region.
SecQube keeps it region-locked and protected.
Confidence, Delivered.
Find out more today 👉 www.secqube.com/
CVE-2025-64660 GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability scq.ms/4innr3c #SecQube #cybersecurity
CVE-2025-64660 GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability
The following revisions have been made: 1) In the Security Updates table, corrected the impact entries to Remote Code Execution. 2) The CVSS scores have been updated. These are informational changes only. Customers who have successfully installed the update do not need to take any further action.
msrc.microsoft.com
November 26, 2025 at 2:38 AM
CVE-2025-64660 GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability scq.ms/4innr3c #SecQube #cybersecurity
CVE-2025-59245 Microsoft SharePoint Online Elevation of Privilege Vulnerability scq.ms/3LTVP9x #cybersecurity #SecQube
CVE-2025-59245 Microsoft SharePoint Online Elevation of Privilege Vulnerability
Information published.
msrc.microsoft.com
November 22, 2025 at 2:38 AM
CVE-2025-59245 Microsoft SharePoint Online Elevation of Privilege Vulnerability scq.ms/3LTVP9x #cybersecurity #SecQube
CVE-2025-64655 Dynamics OmniChannel SDK Storage Containers Elevation of Privilege Vulnerability scq.ms/4a4h7eE #cybersecurity #SecQube
CVE-2025-64655 Dynamics OmniChannel SDK Storage Containers Elevation of Privilege Vulnerability
Improper authorization in Dynamics OmniChannel SDK Storage Containers allows an unauthorized attacker to elevate privileges over a network.
msrc.microsoft.com
November 21, 2025 at 10:34 AM
CVE-2025-64655 Dynamics OmniChannel SDK Storage Containers Elevation of Privilege Vulnerability scq.ms/4a4h7eE #cybersecurity #SecQube
CVE-2025-64656 Application Gateway Elevation of Privilege Vulnerability scq.ms/486Q6Vf #cybersecurity #SecQube
CVE-2025-64656 Application Gateway Elevation of Privilege Vulnerability
Out-of-bounds read in Application Gateway allows an unauthorized attacker to elevate privileges over a network.
msrc.microsoft.com
November 21, 2025 at 6:33 AM
CVE-2025-64656 Application Gateway Elevation of Privilege Vulnerability scq.ms/486Q6Vf #cybersecurity #SecQube
CVE-2025-54099 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability scq.ms/4oQ0tUC #SecQube #cybersecurity
CVE-2025-54099 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Acknowledgement added. This is an informational change only.
msrc.microsoft.com
November 21, 2025 at 2:38 AM
CVE-2025-54099 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability scq.ms/4oQ0tUC #SecQube #cybersecurity
CVE-2025-60703 Windows Remote Desktop Services Elevation of Privilege Vulnerability scq.ms/3LzqXet
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
🔃 Security Update Guide - Loading - Microsoft
scq.ms
November 12, 2025 at 7:58 PM
CVE-2025-60703 Windows Remote Desktop Services Elevation of Privilege Vulnerability scq.ms/3LzqXet
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
CVE-2025-59504 Azure Monitor Agent Remote Code Execution Vulnerability scq.ms/4o0RTkY
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
🔃 Security Update Guide - Loading - Microsoft
scq.ms
November 12, 2025 at 7:56 PM
CVE-2025-59504 Azure Monitor Agent Remote Code Execution Vulnerability scq.ms/4o0RTkY
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack scq.ms/47Y283j
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack
Microsoft fixes 63 flaws, including an exploited Windows Kernel zero-day and a critical RCE bug.
scq.ms
November 12, 2025 at 7:49 PM
Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack scq.ms/47Y283j
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
Attackers turned Citrix, Cisco 0-day exploits into custom malware hellscape scq.ms/49gAS2h
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
Amazon: Cisco, Citrix 0-days indicate 'advanced' attacker
: Vendors (still) keep mum
scq.ms
November 12, 2025 at 7:48 PM
Attackers turned Citrix, Cisco 0-day exploits into custom malware hellscape scq.ms/49gAS2h
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
#CybersecurityTrends #CyberThreats #ITSupport #ManagedServices #MSSP #CyberSecurity #ManagedServices #ThreatResponse #Compliance #SecurityAutomation #MSPCommunity #SecQube
CVE-2025-59506 DirectX Graphics Kernel Elevation of Privilege Vulnerability scq.ms/4nTx2jt #SecQube #cybersecurity
CVE-2025-59506 DirectX Graphics Kernel Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows DirectX allows an authorized attacker to elevate privileges locally.
msrc.microsoft.com
November 12, 2025 at 10:34 AM
CVE-2025-59506 DirectX Graphics Kernel Elevation of Privilege Vulnerability scq.ms/4nTx2jt #SecQube #cybersecurity
CVE-2025-59505 Windows Smart Card Reader Elevation of Privilege Vulnerability scq.ms/4nOOZiO #SecQube #cybersecurity
CVE-2025-59505 Windows Smart Card Reader Elevation of Privilege Vulnerability
Double free in Windows Smart Card allows an authorized attacker to elevate privileges locally.
msrc.microsoft.com
November 12, 2025 at 6:33 AM
CVE-2025-59505 Windows Smart Card Reader Elevation of Privilege Vulnerability scq.ms/4nOOZiO #SecQube #cybersecurity
CVE-2025-59504 Azure Monitor Agent Remote Code Execution Vulnerability scq.ms/4o0RTkY #SecQube #cybersecurity
CVE-2025-59504 Azure Monitor Agent Remote Code Execution Vulnerability
Heap-based buffer overflow in Azure Monitor Agent allows an unauthorized attacker to execute code locally.
msrc.microsoft.com
November 12, 2025 at 2:38 AM
CVE-2025-59504 Azure Monitor Agent Remote Code Execution Vulnerability scq.ms/4o0RTkY #SecQube #cybersecurity
Chromium: CVE-2025-12728 Inappropriate implementation in Omnibox scq.ms/47TEiFT #cybersecurity #SecQube
Chromium: CVE-2025-12728 Inappropriate implementation in Omnibox
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.
msrc.microsoft.com
November 11, 2025 at 6:33 AM
Chromium: CVE-2025-12728 Inappropriate implementation in Omnibox scq.ms/47TEiFT #cybersecurity #SecQube
Chromium: CVE-2025-12729 Inappropriate implementation in Omnibox scq.ms/3LzyqKn #cybersecurity #SecQube
Chromium: CVE-2025-12729 Inappropriate implementation in Omnibox
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.
msrc.microsoft.com
November 11, 2025 at 2:38 AM
Chromium: CVE-2025-12729 Inappropriate implementation in Omnibox scq.ms/3LzyqKn #cybersecurity #SecQube