July's Patch Tuesday delivered the largest single-day vulnerability dump in Microsoft's history — 570 flaws, three zero-days, and a concurrent revelation that Secure Boot has been theatrically broken
Microsoft has shipped its largest Patch Tuesday on record, closing **622 CVEs** in a single release — more than triple the previous high set just last month in June. Two of those vulnerabilities are z
Two warnings defined the day: one from Washington about the router in your closet, one from Redmond about the AI vendors in your contract — and the more surprising of the two came from Microsoft.
CISA added [CVE-2026-45659](https://thehackernews.com/2026/07/sharepoint-rce-cve-2026-45659-added-to.html) to its Known Exploited Vulnerabilities (KEV) catalog on Wednesday — a high-severity remote co
Security researchers at Huntress have [documented a massive, automated password spray campaign](https://thehackernews.com/2026/07/azure-cli-password-spray-hits-at-least.html) targeting Microsoft Azure
A self-replicating worm called **Miasma** has been confirmed active inside Microsoft's GitHub presence, hitting 73 repositories across four organizations: **Azure**, **Azure-Samples**, **Microsoft**,
Computex 2026 kicks off in Taipei with AMD, Dell, Alienware, and Nvidia all jostling for position, but the more telling moves are happening off the show floor: Microsoft is accelerating its decoupling