The Hacker News

Microsoft Warns of Two Actively Exploited Defender Vulnerabilities

Microsoft has disclosed that a privilege escalation and a denial-of-service flaw in Defender has come under active ...
SecurityWeek

Microsoft Patches Exploited UnDefend and RedSun Defender Zero-Days

Microsoft this week released patches for two vulnerabilities in Defender, warning they have been exploited in the wild as ...
Forbes

New Windows 0Day Attack Strikes—Microsoft Warns Millions To Update Now

Update, Dec. 12, 2024: This story, originally published Dec. 11, now includes further information from security experts regarding another critical vulnerability within the latest Windows security ...
Morning Overview on MSN

Microsoft’s May Patch Tuesday fixes 138 vulnerabilities — a critical DNS flaw scores 9.8 and could compromise entire networks

Microsoft’s May 2026 Patch Tuesday release addresses 138 security vulnerabilities across Windows and related products, but ...
Bleeping Computer

CISA orders feds to patch Windows flaw exploited as zero-day

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to secure their Windows systems against a vulnerability exploited in zero-day attacks. Tracked as CVE-2026 ...
The Hacker News

Microsoft Patches 138 Vulnerabilities, Including DNS and Netlogon RCE Flaws

One of the most severe vulnerabilities patched by Redmond is CVE-2026-41096 (CVSS score: 9.8), a heap-based buffer overflow ...
Forbes

New Windows Warning As 6 Zero-Day Attacks Confirmed

Microsoft patches six Windows zero-days. Across January and February combined, Windows users had already been exposed to a total of five so-called zero-day exploits where attackers had already struck ...
CSO Online

May Patch Tuesday roundup: Critical holes in Windows Netlogon, DNS, and SAP S/4HANA

Admins with Dynamics 365 on-prem should also take note of a “severe” vulnerability that allows remote code execution.