Microsoft Issues Windows 10 And 11 Update As Attacks Already Underway
Users of the Windows operating system, be that Windows 10, Windows 11 or any of the Windows Server variants, are used to reading Microsoft cyberattack warnings. Some warnings, however, are more critical than others. Whenever a Windows zero-day exploit is involved, then you really need to start paying close attention. These are the vulnerabilities that have not only been found by threat actors, but also exploited and are under attack already by the time that the vendor, in this case Microsoft, becomes aware of them. Microsoft, and by extension you, are then playing catch-up to get protected against the cyberattacks in question. Here's what you need to know about CVE-2025-33053 and what you need to do right now. Don't wait, update Windows right now.
The June 10 Patch Tuesday security rollout has brought with it a few unwelcome surprises, as is often the case. None more so than CVE-2025-33053, which is not only a zero-day, in that it is already known to have been exploited by threat actors, but is also being leveraged widely by cyberattacks, and that's very worrying indeed for all Windows users.
A Microsoft executive summary describes the threat from CVE-2025-33053 as 'external control of file name or path in WebDAV allows an unauthorized attacker to execute code over a network.' Or, in other words, a remote code execution vulnerability that can do some very bad things indeed.
Tenable Research Special Operations has analyzed the threat, and Satnam Narang, the senior staff research engineer at Tenable, said that it has been confirmed in a Check Point Research report, a known threat group, Stealth Falcon, has 'launched a social engineering campaign to convince targets to open a malicious .url file, which would then exploit this vulnerability, giving them the ability to execute code.' That's problematical, as Narang explained, 'it is rare to hear of a zero-day reported during Patch Tuesday as being leveraged widely. We typically expect these types of zero-days to be used sparingly, with an intention to remain undetected for as long as possible.' All the more reason to get your systems updated as soon as possible. The attackers are not waiting, and neither should you.
'The advisory also has attack complexity as low,' Adam Barnett, lead software engineer at Rapid7, said, 'which means that exploitation does not require preparation of the target environment in any way that is beyond the attacker's control.' Indeed, exploitation just requires a user to click on a malicious link, oh what a surprise. 'It's not clear how an asset would be immediately vulnerable if the service isn't running,' Barnett concluded, adding 'but all versions of Windows receive a patch.' You know what to do, go and do it know.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
20 minutes ago
- Yahoo
Meta signs $10 billion-plus cloud deal with Google, The Information reports
(Reuters) -Google has struck a major cloud computing deal worth more than $10 billion with Meta Platforms, The Information reported on Thursday, citing two people familiar with the matter. Under the agreement, Meta will use Google Cloud's servers, storage, networking and other services, the report said. Reuters could not immediately verify the report.
Fast Company
22 minutes ago
- Fast Company
The future of manufacturing depends on empowering workers
There is a very real anxiety around automation, especially in America—where once-thriving communities have been gutted by waves of displacement, offshoring, and the unchecked application of technology. The narrative around manufacturing automation has long been framed as a zero-sum game: Either humans do the work, or machines do. But that binary thinking is outdated and dangerous. Not only does it threaten millions of livelihoods, but it jeopardizes innovation and efficiency. It overlooks a more powerful and sustainable vision for manufacturing's future, one where AI empowers people instead of replacing them. AI is key to a more resilient workforce and more competitive industries. And when people leverage manufacturing intelligence platforms, they can outperform full automation. Manufacturing at the crossroads America's manufacturing sector is at a crossroad. On one hand, we face a growing shortage of skilled labor amid major sector growth. Companies are announcing new factories in the United States every month, but the National Association of Manufacturers projects that by 2030, more than two million manufacturing jobs could go unfilled due to a lack of qualified workers. On the other hand, we're in the middle of an extraordinary wave of technological advancement—AI, augmented reality, robotics, and more. By using AI to make expertise more accessible, repeatable, and scalable, we can build a more efficient and safer workforce—and actually fill our empty jobs. Today's factory jobs are more art than science, where years of built-up knowledge are critical to getting things done the right way. They rely on software, sensors, and split-second subjective decisions. But the tools on the factory floor haven't evolved past a checklist and a hope. We're asking workers to operate with 20th-century instructions in a 21st-century environment. Manufacturing intelligence platforms aid operators Empowerment in a 21st-century environment starts with manufacturing intelligence platforms. It involves equipping operators with the context and support they need to thrive on the factory floor. A new hire should be able to perform a task with the confidence of a 10-year veteran. Seasoned workers should be free to focus on high-value tasks where their expertise has the greatest impact. And those on the frontline of work should have the tools and agency to shape the future of AI—imagining potent use cases no boardroom could conceive. This vision is not just better for operators. It's better for business. The most forward-thinking companies aren't chasing full automation. They're investing in tools that help their people work smarter, faster, and with more precision. They recognize that machines can't replicate everything humans do. The real opportunity lies in upskilling and empowering people, not replacing them. And this vision is better for national competitiveness. As stress on global supply chains intensifies, the United States faces a defining challenge: to rebuild and reimagine industrial strength. The future of American manufacturing depends on revolutionary efficiency and innovation for the people actually doing the work. Human adaptability is a competitive advantage, not a liability, and human intelligence enhances artificial intelligence just as much as the reverse. To deliver that efficiency where it matters most and truly expand domestic capacity, we need to harness the power of AI to accelerate human potential. Make progress There's a broader economic and cultural truth here, too. Manufacturing isn't just about making things. It's about making progress. And progress requires us to unlock the full capabilities of our people. America's strength in the 20th century didn't come from labor automation. It came from the transformation of it. From the GI Bill to labor protections to the rise of technical education, we invested in our people. And now, as we enter a new industrial era, we have a chance to do it again. This time with smarter tools, more connected systems, and a deeper understanding of what humans are best at: problem solving, adaptability, and creativity.
Forbes
23 minutes ago
- Forbes
The AI Bubble Paradox: Why OpenAI's $500 Billion Valuation Proves The Opposite
It's an odd spectacle: Sam Altman warning about an AI bubble while his company, OpenAI, rockets toward a $500 billion valuation. If there's more obvious proof that we're not in traditional bubble territory, it's hard to imagine what it might be. Speaking to The Verge, Altman acknowledged what many observers already suspected. "If you look at most of the bubbles in history, like the tech bubble, there was a real thing. Tech was really important. The internet was a really big deal. People got overexcited. Are we in a phase where investors as a whole are overexcited about AI? My opinion is yes," he said. But here's where Altman's bubble warning breaks down into paradox. In the same conversation where he cautioned about investor overexcitement, he casually mentioned expecting OpenAI to spend "trillions of dollars on its data center buildout in the not very distant future." His attitude toward the inevitable criticism? "You should expect a bunch of economists wringing their hands, saying, 'This is so crazy, it's so reckless,' and we'll just be like, 'You know what? Let us do our thing.'" This isn't the language of someone truly concerned about unsustainable speculation. It's the confidence of someone who sees the long-term trajectory clearly, even if the short-term valuations seem frothy. The Infrastructure Reality Check The numbers backing Altman's confidence are staggering. OpenAI just secured $8.3 billion in new funding at a $300 billion valuation round that was five times oversubscribed. Employee share sales could push the company's valuation to $500 billion, making it one of the most valuable private companies in history. These aren't the desperate funding rounds of bubble companies scrambling for survival; they're the measured capital raises of a company planning for massive scale. OpenAI isn't alone in this infrastructure binge. Microsoft plans to spend $80 billion on AI data centers this fiscal year alone. Meta is projecting up to $72 billion in AI and infrastructure investments. These aren't speculative bets — they're calculated investments in what companies see as the next fundamental computing platform. When Altman tweets that OpenAI will bring "well over 1 million GPUs online by the end of this year," he's not describing bubble behavior. He's describing the build-out of critical infrastructure for a technology that's already demonstrating real utility and rapid adoption. The Usage Explosion Adoption metrics tell a story that bubble skeptics often miss. Altman recently revealed that reasoning model usage among OpenAI's customers is exploding. Free users went from less than 1% to 7% daily usage, while Plus users jumped from 7% to 24%. This isn't the shallow adoption curve typical of bubble technologies; it's the steep trajectory of tools becoming indispensable. Our research at Futurum Group suggests AI inference workloads could account for more than 80% of computing by 2030, when factoring in on-device processing, autonomous driving, edge computing, and agentic AI systems. If accurate, we're not looking at a bubble but at the early stages of the most significant computing platform shift since mobile. Tuesday's tech selloff, triggered partly by an MIT study claiming 95% of companies see no returns from generative AI, exemplifies the market's nervous energy around AI investments. NVIDIA Corp. dropped 3.5% and Palantir nearly 10%, suggesting investors are increasingly sensitive to any hint that AI returns aren't materializing fast enough. But as I have been saying since the arrival of ChatGPT, this build out will last decades as AI will be the arbiter of the world's leading economies and all the others. We are just getting started. The expectation that enterprise AI deployments should show immediate, measurable returns reflects a fundamental misunderstanding of how transformative technologies get adopted. Companies don't typically see ROI from major technological shifts in quarters. They see it in years. The Bubble Brigade Crowd High-profile financial figures Ray Dalio and Joe Tsai have warned about AI investment pacing ahead of sustainable growth, drawing parallels to the dotcom crash. Apollo Global's Torsten Slok argues the current situation could eclipse the 1990s internet bubble, noting that the 10 largest S&P 500 companies are more overvalued relative to fundamentals than they were at the dotcom peak. These warnings deserve attention, but they conflate different types of risk. Yes, some AI startups are overvalued, and some applications overhyped. But the core infrastructure investments driving the boom are based on demonstrated utility and clear demand trajectories. Meta's approach illustrates why the smartest companies aren't treating this as bubble territory. It is optimizing for the future while continuing to be one of the best plays for real world AI consumption. The company is simultaneously laying groundwork for AGI while embedding AI into everyday products that millions use daily. This dual approach of building for the long term while monetizing current capabilities reflects confidence in AI's staying power. On Thursday, the company confirmed a Wall Street Journal report that it has paused hiring for its new AI division amid the restructuring. But it doesn't signal Meta intends a major cutback in AI spending – it is simply in digestion mode after a massive spending spree that included several acquisition-sized offers and hires in the nine-figure range. Before pouring more investment into its AI teams, Meta needs time to place and access its new talent before forging to new breakthroughs like superintelligence. Altman's apparent contradiction — warning about bubbles while planning multitrillion-dollar infrastructure investments— makes perfect sense. He's distinguishing between short-term market froth and long-term technological transformation. Investor overexcitement in the near term doesn't negate the fundamental importance of the underlying technology. The AI sector may be experiencing speculative excess in valuations and expectations. And certainly not all names that have benefitted from AI are of the same quality. But when the CEO is most positioned to benefit from that speculation, it suggests we're witnessing something more substantial than a bubble. We're watching the expensive, messy process of building the next computing platform, one that promises to be worth every overexcited dollar invested in its foundation. In bubbles, the smart money gets out early. In genuine technological revolutions, it doubles down on infrastructure. OpenAI's $500 billion trajectory signals which category we're really in.
