Microsoft Exchange users are urged to mitigate a zero-day vulnerability that CISA has confirmed is under active exploitation.

The latest Microsoft Patch Tuesday rollout featured no zero-days. However, an angry hacker has just dropped two new 0-day ...

Microsoft supposedly patched CVE-2020-17103 in 2020, but a new proof-of-concept exploit shows the vulnerability is still ...

Microsoft warns of a security vulnerability in Authenticator. Attackers can intercept sign-in tokens and gain access.

New YellowKey and GreenPlasma exploits reportedly target BitLocker and privilege escalation on Windows 11 and Windows Server ...

A zero-day exploit circulating online allows people with physical access to a Windows 11 system to bypass default BitLocker ...

Microsoft has revealed a new threat affecting Microsoft Exchange Servers, a zero-day vulnerability that is reportedly being ...

Windows 11 KB5089549 can still allow a dangerous Registry-based privilege escalation attack, potentially enabling attackers ...

Large-scale security update: Microsoft rolled out fixes for 120 flaws across Windows, Office, and other services, with 30 rated critical, in one of its biggest Patch Tuesdays. Windows 11 encryption ...

The Epitome of WTF: A researcher known as "Nightmare-Eclipse" recently released YellowKey, a security vulnerability that allegedly enables a full bypass of BitLocker's full-volume encryption. The ...

Attackers are already actively exploiting two vulnerabilities for which Microsoft issued patches on Nov. 12 as part of its monthly security update. And they could soon begin targeting two other ...

PCWorld reports on the ‘BlueHammer’ zero-day vulnerability that allows attackers to potentially take over Windows computers through privilege escalation. A frustrated security researcher published the ...