Cybersecurity
The Latest About Cybersecurity
Microsoft Advances Windows Recall AI to Release Preview Despite Lingering Concerns
Microsoft has moved its controversial Recall AI feature to the Windows 11 Release Preview Channel, advancing it despite known data filtering issues.
WhatsApp for Windows Spoofing Flaw Opens Door to Remote Malware Attacks
A newly discovered vulnerability in WhatsApp for Windows allows attackers to execute malicious code via spoofed attachments.
Microsoft Expands Security Copilot with AI Agents to Automate Cyber Defense
Microsoft's Security Copilot now features AI agents designed to autonomously handle high-volume security tasks, improving efficiency for cybersecurity professionals.
Microsoft’s March 2025 Patch Tuesday Addresses Six Actively Exploited Zero-Day Vulnerabilities
Microsoft has released its monthly security updates, addressing a total of 57 vulnerabilities across its software suite. Notably, this update includes fixes for six...
Microsoft Ends DES Encryption in Windows 11 24H2 and Server 2025, Pushing Enterprises to...
Microsoft has removed DES encryption from Windows 11 24H2 and Windows Server 2025, requiring a shift to AES-based Kerberos authentication for enhanced security.
February 2025 Patch Tuesday: Microsoft Fixes Two Exploited Zero-Days and 55 Security Flaws
Microsoft has rolled out patches for 55 flaws, including zero-days in Windows Core Messaging and NTFS, urging immediate updates to protect enterprise and hybrid environments.
You Can Now Test Microsoft’s AI Powered Scareware Blocker for Online Scams
Microsoft Edge’s new scareware blocker uses AI and computer vision to protect users from malicious pop-ups and scams in real time.
Flaw in Microsoft’s OneDrive Offline Mode Stores OCR Data Insecurely
Cybersecurity experts warn that Microsoft’s OneDrive Offline Mode leaves sensitive OCR data vulnerable in unprotected local databases.
January 2025 Patch Tuesday: Microsoft Patches 159 Vulnerabilities in Hyper-V, OLE, and More
Microsoft has focused its January 2025 patch tuesday cycle on fixing critical Hyper-V and OLE flaws, securing virtualized environments and enterprise workflows.
Microsoft December 2024 Patch Tuesday Fixes 71 Windows Flaws, One Zero-Day
December 2024 Patch Tuesday addresses 71 vulnerabilities, with 16 critical remote code execution issues and one zero-day.
How Pressing “Stop” in ChatGPT Can Neutralize its Safeguards
A simple 'stop' button click can exploit ChatGPT's safeguards, exposing unfiltered outputs.
Microsoft Brings Hotpatching to Windows 11 Enterprise: No More Reboots After Security Updates
Microsoft unveils hotpatching for Windows 11 Enterprise, offering restart-free updates to enhance security and productivity.
Microsoft Updates Windows 11 WebAuthn APIs to Enable Third-Party Passkeys
Microsoft has updated the Windows 11 WebAuthn APIs, enabling third-party passkey plugins and advancing passwordless authentication capabilities.
Administrator Protection: Windows 11 Gets Just-In-Time Admin Privilege Feature
Microsoft’s new Administrator Protection in Windows 11 combats credential theft by isolating admin privileges with temporary tokens.
Microsoft´s November 2024 Patch Tuesday Fixes Four Zero-Days in Windows 11, AD CS, and...
Microsoft's November 2024 Windows 11 update addresses critical zero-day vulnerabilities and enhances user features, including a new Copilot key configuration.
Internet Explorer Remnants Exploited by North Korean Hackers in Massive Attack
Legacy components of Internet Explorer continue to expose users to malware attacks, as hackers leverage vulnerabilities in outdated software for cyber espionage.
Microsoft Cloud Logging Bug Left Customers Exposed for Weeks
A bug in Microsoft’s cloud services caused the loss of security logs for weeks, potentially exposing customer networks to unseen threats. Businesses using Microsoft’s...
Microsoft Addresses Exploited Zero-Day Data-Stealing Windows Vulnerability
The cybercriminal group Void Banshee has been exploiting a zero-day defect in Windows known as CVE-2024-43461, linked to the MSHTML engine, in their cyber...
Microsoft Addresses Critical Zero-Days in September 2024 Patch Tuesday Update
In its latest security update for September 2024, Microsoft has addressed a total of 79 vulnerabilities. The rollout includes four zero-day flaws that are...
Microsoft Windows Patch Causes Dual-Boot Failures for Linux Users
A recent security update from Microsoft has led to boot problems for users with dual-boot systems featuring both Windows and Linux, the company has...
Microsoft Postpones AI Recall Feature for Windows Insiders to October
Microsoft has pushed back the rollout of its AI-backed Recall feature, initially slated for release to Windows Insiders. The new deployment is now expected...
North Korean Lazarus Hackers Use Windows Zero-Day to Deploy Rootkit
The Lazarus group, a hacking collective with ties to North Korea, has been identified leveraging a zero-day flaw in the Windows AFD.sys driver to...
Microsoft Fixes Windows SmartScreen Zero-Day Exploited Since March
A critical security gap in Windows SmartScreen has been sealed by Microsoft after hackers exploited it for several months. The flaw, tagged as CVE-2024-38213,...
Microsoft Outlook Flaw Targeted by Specula for Remote Code Execution
Cybersecurity firm TrustedSec has introduced "Specula," a framework aimed at post-exploitation stages and targeting Microsoft Outlook. Microsoft says the tool exploits the CVE-2017-11774 vulnerability,...
CrowdStrike Update Triggers Global Windows BSOD Crisis
Numerous Windows systems worldwide are experiencing Blue Screen of Death (BSOD) errors, impacting sectors including banking, aviation, and media. The source of the issue...
Cybercriminals Exploit Chrome and Word Errors to Distribute Malware via PowerShell Scripts
The threat actors employ JavaScript within HTML attachments and hijacked websites to generate fake error notifications.
Microsoft Postpones Windows Recall Feature for Enhanced Security Testing
Microsoft’s plan to delay the feature and enhance is a reaction to widespread criticism from privacy advocates and cybersecurity experts.
Microsoft Modernizes Outlook Security by Enforcing “Modern Authentication”
Microsoft is emphasizing the transition to Modern Authentication to provide enhanced security against email-based threats.
Microsoft’s Windows Recall Feature Faces Privacy-Backlash
The UK's Information Commissioner's Office has announced that it is making inquiries with Microsoft to understand the privacy safeguards in place.
Windows DOS-to-NT Path Conversion Process Exploited by Hackers
Windows path flaw lets attackers hide files, mimic trusted programs, and create rootkits without admin rights.
