Warnings Mount Over Windows Server Update Services Hacks

Warnings have escalated regarding hackers exploiting a Windows Server Update Services (WSUS) flaw that allows unauthenticated attackers to execute arbitrary code. Cybersecurity firms have observed active hacks targeting thousands of exposed WSUS instances, with attacks focused on reconnaissance as a precursor to broader network compromise. The vulnerability, CVE-2025-59287, stems from a deserialization of untrusted data in WSUS, a tool no longer under active development and which should ideally not be exposed to the internet.