Microsoft reported a critical vulnerability (CVE-2025-21415) in Azure AI Face Service that allowed attackers to bypass authentication via spoofing, leading to privilege escalation. The issue, classified as critical with a CVSS score of 9.9, has been fully mitigated, requiring no customer action. Microsoft emphasizes its commitment to transparency and encourages users to adopt security best practices.
Hackers Use ClickFix Technique to Deploy NetSupport RAT Loaders
Cybercriminals are increasingly using a technique known as “ClickFix” to deploy the NetSupport remote administration tool (RAT) for malicious purposes. According to a new report
