A critical SSRF vulnerability in Microsoft Power Platform’s SharePoint connector allowed attackers to harvest user credentials and impersonate victims, risking severe security breaches across services like Power Apps and Automate. Microsoft patched the flaw (CVE-2024-49070) in December 2024, emphasizing the need for organizations to implement updates, limit user permissions, and monitor suspicious activity.
Dark ships and shadow fleets – what is crossing 'closed' Strait of Hormuz?
Iran’s move to shut the Strait of Hormuz has brought shipping through the 24-mile stretch of water close to a standstill.
