Cve 2025 40751
The latest Cve 2025 40751 coverage — news, analysis, and updates from the WindowsNews.AI desk.
Tata Breach Spills iPhone 18 Pro Secrets: Apple’s Takedown Storm and the New Supply-Chain Reality for Windows Makers
Apple has launched aggressive copyright takedowns after a security breach at supplier Tata Electronics leaked extensive iPhone 18 Pro details, including schematics and assembly videos. The incident exposes critical supply-chain vulnerabilities that extend to Windows PC makers sharing the same manufacturers. The breach is driving urgent industry-wide security reforms.
Spartanburg County Reconnects: Critical Services Back Online After Weeks-Long Cyber Investigation
Spartanburg County, SC, restored core network services on June 29 after a weeks‑long outage that crippled tax payments, phones, and online systems. A state cyber investigation is underway, though the cause remains undisclosed, highlighting the growing threat of cyberattacks on local governments.
Government Cloud Admins Get New Purview DLP Device Health Dashboard in July 2026
Microsoft will launch a web-based device health dashboard for Purview Endpoint DLP in July 2026, targeting GCC and DoD environments. The dashboard provides centralized visibility into DLP agent status, policy sync, and evaluation metrics, helping government administrators proactively manage data loss prevention across their device fleets.
Microsoft Edge 'Enhanced Security Mode Plus' Arrives July 2026 with Enterprise Admin Controls
Microsoft Edge is set to receive Enhanced Security Mode Plus, a new enterprise-focused security feature with advanced administrative controls, according to a Microsoft 365 Roadmap entry. Slated for worldwide release in July 2026, the feature builds on Edge's existing browser hardening by giving IT admins finer control over security mitigations. The update promises to improve protection against zero-day exploits while maintaining compatibility for business web apps.
Microsoft Edge Will Block Screenshots of Purview-Protected PDFs in OneDrive and SharePoint
Microsoft has added a roadmap entry to block screenshots of PDFs protected by Microsoft Purview Information Protection labels when they are viewed through OneDrive or SharePoint in Microsoft Edge. The feature, tracked under ID 566695, is expected to enhance data security for enterprises by preventing visual capture of sensitive documents, with a rollout planned for 2027.
Microsoft Tightens Secure Boot, Revamps Autopatch in Critical June 2026 Windows Update Push
Microsoft's June 2026 updates introduce Secure Boot certificate pre-staging, expanded hotpatching for Windows 11, and a revamped Autopatch reporting experience. IT administrators now have a six-month window to validate the new CA before enforcement, while weighing the productivity gains of reboot-free patching against its management complexity and license costs. The changes underscore an industry-wide push toward zero-trust, hardware-backed security for enterprise endpoints.
Windows 11 26H2 Hits Insider Testing as Microsoft Lays Out Kerberos RC4 Retirement Roadmap
Microsoft's June 2026 Windows recap reveals that Windows 11 version 26H2 has entered early Insider testing, Windows 365 is gaining developer and AI-agent capabilities, and IT admins must prepare for July changes that will begin deprecating Kerberos RC4 encryption. Alongside printing modernization moves, these updates signal a major shift toward heightened security and cloud integration that will require proactive planning from enterprise organizations.
Urgent: Active Exploits Target SharePoint Deserialization Bug, CISA Orders Immediate Patching
CISA has added CVE-2026-45659, a critical SharePoint Server deserialization RCE flaw, to its Known Exploited Vulnerabilities Catalog with evidence of active exploitation. The vulnerability allows unauthenticated remote code execution and has been patched in Microsoft's June 2026 security updates. Organizations must apply the patch immediately or implement mitigations to avoid wide-scale network compromise.
IFI Techsolutions Clinches Fourth Straight Azure Expert MSP Renewal, Cementing Enterprise Cloud Credentials
IFI Techsolutions Limited has renewed its Microsoft Azure Expert MSP status for a fourth consecutive year, following a rigorous independent third-party audit. This achievement signals deep enterprise trust, mature cloud governance, and sustained technical excellence in managed Azure services. The renewal places the firm in an elite group of partners, underscoring the value of long-term certification for risk-averse enterprises navigating complex cloud environments.
81 Million Azure CLI Brute-Force Attempts Expose Critical MFA Gaps
Huntress detected an automated password-spray campaign targeting Azure CLI authentication with over 81 million sign-in attempts between June 12-26, 2026, exposing critical MFA gaps in conditional access policies. Organizations must urgently enforce MFA for all CLI access, secure service principals, and block legacy authentication to prevent cloud breaches. The attack highlights a systemic vulnerability in identity coverage across Microsoft Entra ID.
Huntress Launches Managed Identity Security Posture Management to Fortify Microsoft 365 Defenses
Huntress has released Managed Identity Security Posture Management (ISPM) as a generally available service starting June 30, 2026. The fully managed offering continuously hardens Microsoft 365 identity configurations for MSPs and SMBs, combining AI-driven automation with human SOC oversight to reduce identity risks like misconfigurations and excessive privileges.
Frost & Sullivan 2026 Radar: Microsoft Defender for Cloud Leads Runtime Security, Redefining Cloud Protection
Microsoft Defender for Cloud has been named a leader in Frost & Sullivan's 2026 Frost Radar for Cloud/Application Runtime Security, thanks to its integration with Defender XDR and robust real-time workload protection. This recognition underscores Microsoft's growing dominance in securing cloud-native and hybrid environments, directly benefiting Windows and Azure users with unified threat detection and automated response. The achievement validates Defender for Cloud as a top-tier runtime security platform that competes head-to-head with dedicated cloud security vendors.
Windows 10 Lives On: Microsoft Extends Consumer Security Updates Until October 2027
Microsoft has extended the consumer Extended Security Updates program for Windows 10, giving enrolled PCs another year of security patches until October 12, 2027. The move offers New Zealand businesses and users extra time to plan Windows 11 migrations while maintaining a supported operating system for a $30 fee.