The Hacker News

Microsoft Warns of Two Actively Exploited Defender Vulnerabilities

Microsoft has disclosed that a privilege escalation and a denial-of-service flaw in Defender has come under active ...
SecurityWeek

Microsoft Patches Exploited UnDefend and RedSun Defender Zero-Days

Microsoft this week released patches for two vulnerabilities in Defender, warning they have been exploited in the wild as ...
SecurityWeek

Researcher Drops MiniPlasma Windows Exploit for Unpatched 2020 CVE

The MiniPlasma exploit targets CVE-2020-17103, a Windows vulnerability that should have been patched in December 2020.
Forbes

New Windows Warning As 6 Zero-Day Attacks Confirmed

Microsoft patches six Windows zero-days. Across January and February combined, Windows users had already been exposed to a total of five so-called zero-day exploits where attackers had already struck ...
The Hacker News

Microsoft Patches 138 Vulnerabilities, Including DNS and Netlogon RCE Flaws

One of the most severe vulnerabilities patched by Redmond is CVE-2026-41096 (CVSS score: 9.8), a heap-based buffer overflow ...
Morning Overview on MSN

Microsoft just rushed out a fix for 'YellowKey' — a Windows flaw that lets attackers pop open BitLocker-encrypted drives and read what's inside

Microsoft has confirmed a vulnerability in Windows Recovery Environment that can let an attacker with physical access bypass ...
Bleeping Computer

CISA orders feds to patch Windows flaw exploited as zero-day

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to secure their Windows systems against a vulnerability exploited in zero-day attacks. Tracked as CVE-2026 ...