Free unofficial patches are available for a new Windows zero-day vulnerability that can let remote attackers steal NTLM ...

A threat actor known as EncryptHub has been linked to Windows zero-day attacks exploiting a Microsoft Management Console ...

ESET, a Slovak cybersecurity company, has reported that a newly patched zero-day vulnerability in the Windows Win32 Kernel ...

Microsoft’s unpatched Windows flaw (ZDI-CAN-25373) has been exploited by 11 state-backed groups since 2017, enabling ...

But] Microsoft tagged it as “not meeting the bar servicing” in late September and said it wouldn’t release security updates to address it. … This heavily exploited Windows vulnerability (tracked as ...

Patch Tuesday fixed a number of serious security vulnerabilities. But it also did something Microsoft didn't intend: remove ...

An exploitation avenue found by Trend Micro in Windows has been used in an eight-year-long spying campaign, but there's no sign of a fix from Microsoft, which apparently considers this a low priority.

Today is a good day to make sure your Windows 10 and 11 machines are up to date, as Microsoft has released a hefty new security update for a number of zero-day vulnerabilities. The patch ...

Microsoft fixes 57 security flaws, including six zero-days exploited in the wild. CISA mandates patches by April 1.

At least 11 state-sponsored threat groups since 2017 have been actively exploiting a Microsoft zero-day flaw allowing for abuse of Windows shortcut files to steal data and commit cyber espionage ...

Microsoft’s March Patch Tuesday has put more pressure on system administrators, with over 50 new vulnerabilities to fix ...