A flaw in Microsoft Teams allowed remote code execution by sending one message to a victim.
A windows kernel bug (CVE-2020-17087) is being used in active targeted attacks alongside a recently fixed Chrome bug.
The Zerologon (CVE-2020-1472) vulnerability is continuing to draw attention from attackers and Microsoft is urging enterprises to patch immediately.
A flaw (CVE-2020-16898) in Windows 10 and Server 2019 can allow remote code execution with one malformed ICMP packet.
Microsoft and several other security companies worked together to disrupt the Trickbot malware network, seizing C2 servers and disabling IP addresses associated with it.