LINDENSEC

Summary Microsoft has released an urgent out-of-band security update to address CVE-2025-59287 (after a previous update in Patch Tuesday that didn't quite hit the nail on the head), a critical remote code execution vulnerability in Windows Server Update Services (WSUS) that is being actively exploited in the wild. This vulnerability allows unauthenticated attackers to execute arbitrary code with SYSTEM privileges by exploiting unsafe deserialization in WSUS's cookie handling

A short CTF styled KQL challenge! Can you find out what happened?

A free PDF Editor turning itself into an infostealer overnight. Let's hunt it down with KQL!

KQL your way into Google's Open Redirect 'feature' that's being abused for phishing.

The first KQL query I share on here! Lets have a look at B64 encoded UPNs!