Indian Govt Issues High-Risk Security Alert for Windows and Microsoft Office Users
The Indian government has issued a critical security alert concerning Microsoft Windows and Office products. The warning, released by the Indian Computer Emergency Response Team (CERT-In) in July 2025, raises serious concerns for millions of users who rely on Microsoft software, including Office, Azure, and other enterprise tools.
What’s the Threat?
According to CERT-In, multiple high-severity vulnerabilities have been identified across a range of Microsoft products. These flaws could allow attackers to:
- Gain elevated privileges
- Access sensitive information
- Execute remote code
- Bypass security protections
- Launch spoofing and denial-of-service (DoS) attacks
- Tamper with system settings
These exploits could have significant consequences, enabling hackers to breach system security, steal data, crash systems, and disrupt operations across personal and enterprise environments.
Affected Microsoft Products
The vulnerabilities impact a wide array of Microsoft offerings, including:
- Microsoft Windows
- Microsoft Office
- Microsoft Dynamics
- Microsoft Edge browser
- Developer Tools
- SQL Server
- System Center
- Azure cloud services
- Legacy products under Extended Security Updates (ESU)
If you use a Windows PC, Office applications, Edge browser, or any of Microsoft’s business services, your system could be at risk.
What You Should Do
Microsoft has acknowledged the vulnerabilities and released patches through security updates. While the company notes that there is currently low evidence of these being actively exploited, it’s strongly recommended that all users take immediate action.
Steps to protect your device:
- Go to Settings > Windows Update
- Enable Auto-Update
- Download and install the latest security patches
- Reboot your system after updates are installed
Taking these steps will help secure your device and prevent potential attacks targeting these newly discovered flaws.
