1 day ago · January’s Microsoft zero-day flaw — CVE-2026-20805 — is brought to us by a flaw in the Desktop Window Manager (DWM), a key component of Windows that organizes windows …

May 15, 2025 · Microsoft has confirmed multiple new Windows zero-day attacks. Here's what you need to know and do, right now.

23 hours ago · Varonis Threat Labs has published a report detailing a now patched security exploit discovered in Copilot that let attackers steal data with a single-click.

1 day ago · Today is Microsoft's January 2026 Patch Tuesday with security updates for 114 flaws, including one actively exploited and two publicly disclosed zero-day vulnerabilities.

2 days ago · Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose information locally.

Apr 27, 2025 · Attackers, including the RansomEXX ransomware group (Storm-2460), use this exploit to deploy malware and gain administrative control, sometimes with minimal user …

Jan 6, 2026 · With Windows 10 no longer receiving support, it has become an easy target for hackers. That doesn't mean you have to upgrade immediately—here's how to protect yourself …

Apr 14, 2025 · By abusing directory junctions or symbolic links, attackers can hijack trusted paths accessed by SYSTEM-level processes like `MoUsoCoreWorker.exe` and execute arbitrary …

Dec 15, 2025 · Read about the latest risks regarding Vulnerabilities and exploits, and find helpful solutions from the digital security experts at Microsoft Security Blog.

Jan 6, 2025 · Mateusz Jurczyk of Google Project Zero, who shared the PoC, demonstrated the exploit using a Linux-based SMB server running Python scripts to manipulate the hive file. The …