Microsoft has fixed a vulnerability in its AI-enabled Azure Health Bot that could have allowed attackers to access cross-tenant resources. The elevation of privilege vulnerability was discovered by Tenable researchers in June and patched by July. During routine investigations into data connections, the researchers were able to access an internal Microsoft subscription ID, potentially making other resources accessible.
Hackers Exploiting React Server Components Vulnerability in the Wild to Deploy Malicious Payloads
Two months following the disclosure of CVE-2025-55182, exploitation activity targeting React Server Components has evolved from broad scanning into consolidated, high-volume attack campaigns. According to
