A newly disclosed Microsoft Defender exploit called RedSun can let a low-privileged attacker gain full SYSTEM access on fully patched Windows 10, Windows 11, and…
Microsoft has confirmed a known issue in the April 2026 Windows 11 security updates that can force some PCs into a BitLocker recovery prompt on…
Cybercriminals are targeting trucking carriers, freight brokers, and logistics providers so they can steal physical shipments in the real world. Proofpoint says the attackers break…
A newly analyzed malware strain called ZionSiphon appears designed to target Israeli water treatment and desalination environments, with code that points to chlorine control and…
A newly disclosed Windows Admin Center vulnerability can let an attacker run arbitrary commands after getting a target to open a malicious link. Cymulate Research…
Microsoft has fixed a Windows Snipping Tool vulnerability that can expose a user’s authentication data over the network. The flaw, tracked as CVE-2026-33829, lets an…
Microsoft has confirmed that some Windows Server domain controllers can enter repeated restart loops after installing the April 2026 security updates. The company says the…
Leaked Windows Defender zero-days are already being used in real attacks, and two of them still do not have a Microsoft patch. Huntress said threat…
CISA has added CVE-2026-34197, a high-severity Apache ActiveMQ vulnerability, to its Known Exploited Vulnerabilities catalog after confirming active exploitation in the wild. The agency added…
A ransomware group called Payouts King has emerged as a credible threat, and Zscaler says several recent attacks tie back with high confidence to operators…
November 21, 2025
1 comment 
