October 14th, 2025, Microsoft addressed CVE-2025-59287, a deserialisation of untrusted data vulnerability in WSUS that could allow an unauthenticated attacker to execute arbitrary code over the network. Following the release, a confirmed proof-of-concept exploit surfaced, and in response, Microsoft issued an out-of-band security update to fully remediate the vulnerability.
Updated information building on our advisory from October 15th.
In this blog post we highlight the importance of testing sophisticated attacker tradecraft, and show defenders an often overlooked part of their security posture.
In 2025, mnemonic celebrates its 25th anniversary. We sat down with CEO Tønnes Ingebrigtsen to reflect on the company’s journey, the evolution of cybersecurity, and what has helped mnemonic grow and adapt in an ever-changing industry.
We use cookies to secure and enhance your website experience. Strictly necessary cookies are required for the site to function, while performance cookies are used for anonymous usage analytics. Find more information in our cookie notice.
Accept all cookies Strictly necessary