Slovak cybersecurity company ESET says a newly patched zero-day vulnerability in the Windows Win32 Kernel Subsystem has been ...

The US Cybersecurity and Infrastructure Security Agency (CISA) has added five new flaws in Ivanti and VeraCore products to ...

Critical Windows security flaw affects 240 million. Microsoft urges immediate patch installation to prevent data theft and system control.

Microsoft fixes 57 security flaws, including six zero-days exploited in the wild. CISA mandates patches by April 1.

The first is CVE-2025-24993 - a heap-based buffer overflow in NTFS used by Windows Server 2008 and later systems, as well as ...

One exploit being tracked, CVE-2023-20118, allows hackers to remotely "execute arbitrary commands" on certain VPN routers.

Device code phishing has emerged as a particularly sophisticated attack vector, with threat actors using tools like TokenTactics to intercept Microsoft 365 tokens and gain unauthorized access to ...

State-sponsored Volt Typhoon hackers were poking around the Littleton Electric Light and Water Departments for at least 300 ...

Microsoft is addressing 57 vulnerabilities this Patch Tuesday, which is a similar volume to last month. However, Microsoft has evidence of in-the-wild exploitation for as many as six of the ...

In the cybersecurity arms race, you have access to the same weapons as the bad guys. Just how well-armed are you now?

Microsoft’s monthly release of security fixes addresses vulnerabilities including six flaws that are believed to be under ...