How Microsoft defends against indirect prompt injection attacks
Summary The growing adoption of large language models (LLMs) in enterprise workflows has introduced a new class of adversarial techniques: indirect prompt injection. Indirect prompt injection can be used against systems that leverage large language models (LLMs) to process untrusted data. Fundamentally, the risk is that an attacker could provide specially crafted data that the LLM misinterprets as instructions.
Categories: Microsoft
New - deviceTRUST Agent and Console 2503
New downloads are available for Citrix Virtual Apps and Desktops
Categories: Citrix
New - deviceTRUST Agent and Console 2503
New downloads are available for Citrix Virtual Apps and Desktops
Categories: Citrix
New - deviceTRUST Agent and Console 2503
New downloads are available for Citrix Virtual Apps and Desktops
Categories: Citrix
Customer guidance for SharePoint vulnerability CVE-2025-53770
Summary Microsoft is aware of active attacks targeting on-premises SharePoint Server customers. The attacks are exploiting a variant of CVE-2025-49706. This vulnerability has been assigned CVE-2025-53770.
SharePoint Online in Microsoft 365 is not impacted. A patch is currently not available for this vulnerability. Mitigations and detections are provided below.
Categories: Microsoft
Congratulations to the MSRC 2025 Most Valuable Security Researchers!
The Microsoft Researcher Recognition Program offers public thanks and recognition to security researchers who help protect our customers through discovering and sharing security vulnerabilities under Coordinated Vulnerability Disclosure.
Today, we are excited to recognize this year’s 100 Most Valuable Researchers (MVRs), based on the total number of points earned for each valid report.
Categories: Microsoft
New - Citrix Virtual Apps and Desktops 7 2402 LTSR On Demand Updates
New downloads are available for Citrix Virtual Apps and Desktops
Categories: Citrix
New - Citrix Virtual Apps and Desktops 7 2402 LTSR CU2 Update 1
New downloads are available for Citrix Virtual Apps and Desktops
Categories: Citrix
New - Citrix Virtual Apps and Desktops 7 2402 LTSR CU1 Update 1
New downloads are available for Citrix Virtual Apps and Desktops
Categories: Citrix
Congratulations to the top MSRC 2025 Q2 security researchers!
Congratulations to all the researchers recognized in this quarter’s Microsoft Researcher Recognition Program leaderboard! Thank you to everyone for your hard work and continued partnership to secure customers.
The top three researchers of the 2025 Q2 Security Researcher Leaderboard are wkai, Brad Schlintz (nmdhkr), and 0x140ce!
Check out the full list of researchers recognized this quarter here.
Categories: Microsoft
Rising star: Meet Dylan, MSRC’s youngest security researcher
At just 13 years old, Dylan became the youngest security researcher to collaborate with the Microsoft Security Response Center (MSRC). His journey into cybersecurity is inspiring—rooted in curiosity, resilience, and a deep desire to make a difference.
Early beginnings: From scratch to security Dylan’s fascination with technology began early. Like many kids, he started with Scratch—a visual programming language for making simple games and animations.
Categories: Microsoft
New - Citrix ADC Release (Maintenance Phase) 13.1 Build 59.19
New downloads are available for NetScaler
Categories: Citrix
New - SDX Bundle (Maintenance Phase) 13.1-59.19
New downloads are available for NetScaler
Categories: Citrix
New - Citrix ADC BLX image 13.1 Build 59.19
New downloads are available for NetScaler
Categories: Citrix
New - Citrix ADC CPX Release (Maintenance Phase) 13.1 Build 59.19
New downloads are available for NetScaler
Categories: Citrix
RedirectionGuard: Mitigating unsafe junction traversal in Windows
As attackers continue to evolve, Microsoft is committed to staying ahead by not only responding to vulnerabilities, but also by anticipating and mitigating entire classes of threats. One such threat, filesystem redirection attacks, has been a persistent vector for privilege escalation. In response, we’ve developed and deployed a new mitigation in Windows 11 called RedirectionGuard.
Categories: Microsoft
New - SDX Bundle (Feature Phase) 14.1-43.56
New downloads are available for NetScaler
Categories: Citrix
New - Citrix ADC VPX FIPS Release 12.1 Build 55.328
New downloads are available for NetScaler
Categories: Citrix
New - Citrix ADC VPX FIPS Release 13.1 Build 37.235
New downloads are available for NetScaler
Categories: Citrix