The Hacker News

Microsoft Patches Critical Entra ID Flaw Enabling Global Admin Impersonation Across Tenants

July 17, 2025; CVSS 10.0 Entra ID bug via legacy Graph enabled cross-tenant impersonation risking tenant compromise.
SecurityWeek

Fortra Patches Critical GoAnywhere MFT Vulnerability

Fortra has released patches for a critical-severity vulnerability in the GoAnywhere secure managed file transfer (MFT) ...