A flaw (CVE-2020-16898) in Windows 10 and Server 2019 can allow remote code execution with one malformed ICMP packet.
Microsoft and several other security companies worked together to disrupt the Trickbot malware network, seizing C2 servers and disabling IP addresses associated with it.
The Zerologon vulnerability Microsoft patched in Windows Server last month is actively being exploited in several attacks, Microsoft warned.
Microsoft on Tuesday patched flaws in Internet Explorer an Windows that have been used in active attacks.
The Holmium threat group has been using password spraying attacks against Office 365 to gain access to corporate networks.