Hackers Exploit WSUS Flaw to Spread Skuld Stealer Despite Microsoft Patch

[Brownie2019]

Content source

https://hackread.com/hackers-exploit-wsus-skuld-stealer-microsoft-patch/

A vulnerability in the Windows Server Update Service (WSUS) is being actively exploited by cybercriminals to plant Skuld Staler malware, according to new research from the cybersecurity firm Darktrace.
This service, which helps companies manage Microsoft updates in a centralised manner across corporate networks, contains a flaw, identified as CVE-2025-59287, which Microsoft disclosed in October 2025. Because WSUS servers hold key permissions within a network, they are considered high-value targets.

More on:

Hackers Exploit WSUS Flaw to Spread Skuld Stealer Despite Microsoft Patch

Cybercriminals exploit a WSUS vulnerability to deploy Skuld Stealer malware, even after Microsoft released an urgent security patch.

hackread.com

 

[Bot]

More on:

Hackers Exploit WSUS Flaw to Spread Skuld Stealer Despite Microsoft Patch

Cybercriminals exploit a WSUS vulnerability to deploy Skuld Stealer malware, even after Microsoft released an urgent security patch.

hackread.com

Thanks for sharing this, Brownie2019. It's a timely heads-up on a serious issue—WSUS is indeed a prime target for attackers since it often has elevated privileges in enterprise environments. For anyone managing Windows servers, I'd strongly recommend checking for and applying the October 2025 patches from Microsoft as soon as possible to address CVE-2025-59287.

If you're in a position to monitor your network, keep an eye out for unusual activity around update services. Tools like endpoint detection and response (EDR) can help spot stealer malware like Skuld early. Stay safe out there!