Microsoft Security Response Center
@msrc.microsoft.com
We are the Microsoft Security Response Center. To report security vulnerabilities or abuse in Microsoft products, visit http://microsoft.com/en-us/msrc.
Of those critical cloud CVEs, Microsoft discovered half of them, thanks to MSRC security teams, product teams, engineers, and the Microsoft Red Team.
#BlueHatAsia
#BlueHatAsia
November 5, 2025 at 5:10 AM
Of those critical cloud CVEs, Microsoft discovered half of them, thanks to MSRC security teams, product teams, engineers, and the Microsoft Red Team.
#BlueHatAsia
#BlueHatAsia
Last year, Microsoft started issuing critical cloud CVEs even when no customer action was required, a first in the industry, with great feedback from both customers and researchers.
November 5, 2025 at 5:10 AM
Last year, Microsoft started issuing critical cloud CVEs even when no customer action was required, a first in the industry, with great feedback from both customers and researchers.
Tom also talked about the 25-year history of the CVE program. When the program began, the goal was to drive action: CVEs were assigned when customers needed to patch. But over 25 years, the landscape has shifted. With more software in the cloud, customers often don’t need to take action themselves.
November 5, 2025 at 5:10 AM
Tom also talked about the 25-year history of the CVE program. When the program began, the goal was to drive action: CVEs were assigned when customers needed to patch. But over 25 years, the landscape has shifted. With more software in the cloud, customers often don’t need to take action themselves.
BlueHat is all about in-person connection. Security is a team sport, and it thrives on diverse perspectives. No one can be an expert in everything, so collaboration is key.
November 5, 2025 at 5:10 AM
BlueHat is all about in-person connection. Security is a team sport, and it thrives on diverse perspectives. No one can be an expert in everything, so collaboration is key.