EU age verification app faces security scrutiny after researcher shows quick local bypass
The European Commission says its new age verification app is technically ready and will soon be available to citizens across the EU. But within days…
RedSun exploit gives attackers SYSTEM access by abusing Microsoft Defender on fully patched Windows PCs
A newly disclosed Microsoft Defender exploit called RedSun can let a low-privileged attacker gain full SYSTEM access on fully patched Windows 10, Windows 11, and…
Microsoft confirms some Windows 11 April updates can trigger BitLocker recovery
Microsoft has confirmed a known issue in the April 2026 Windows 11 security updates that can force some PCs into a BitLocker recovery prompt on…
Hackers are breaching freight firms to steal real cargo, not just data
Cybercriminals are targeting trucking carriers, freight brokers, and logistics providers so they can steal physical shipments in the real world. Proofpoint says the attackers break…
ZionSiphon malware appears built to sabotage Israeli water systems, but researchers say this sample is incomplete
A newly analyzed malware strain called ZionSiphon appears designed to target Israeli water treatment and desalination environments, with code that points to chlorine control and…
One-click Windows Admin Center flaw can let attackers run commands through a tampered link
A newly disclosed Windows Admin Center vulnerability can let an attacker run arbitrary commands after getting a target to open a malicious link. Cymulate Research…
Windows Snipping Tool flaw can leak credentials over the network after one click
Microsoft has fixed a Windows Snipping Tool vulnerability that can expose a user’s authentication data over the network. The flaw, tracked as CVE-2026-33829, lets an…
Microsoft confirms some Windows Server domain controllers can enter reboot loops after April 2026 patches
Microsoft has confirmed that some Windows Server domain controllers can enter repeated restart loops after installing the April 2026 security updates. The company says the…
Leaked Windows Defender 0-Day Vulnerability Actively Exploited in Attacks
Leaked Windows Defender zero-days are already being used in real attacks, and two of them still do not have a Microsoft patch. Huntress said threat…
CISA warns of Apache ActiveMQ flaw now under active attack
CISA has added CVE-2026-34197, a high-severity Apache ActiveMQ vulnerability, to its Known Exploited Vulnerabilities catalog after confirming active exploitation in the wild. The agency added…
November 21, 2025
1 comment 
