Zoom has disclosed a critical-severity vulnerability in its Windows desktop client and Windows SDK, warning that an unauthenticated remote attacker can exploit it to fully hijack victim accounts — no
Microsoft has shipped its largest Patch Tuesday on record, closing **622 CVEs** in a single release — more than triple the previous high set just last month in June. Two of those vulnerabilities are z
Microsoft has shipped a security update for **CVE-2026-50656**, a privilege escalation flaw in the Microsoft Malware Protection Engine — the core component behind Windows Defender — [publicly named Ro
Microsoft has released an emergency out-of-band fix for a zero-day vulnerability in Microsoft Defender, publicly named **RoguePlanet**. According to [BleepingComputer](https://www.bleepingcomputer.com
A [security researcher's writeup](https://mrbruh.com/msicenter/) published this week details a local privilege escalation (LPE) in MSI Center, the system management utility bundled with MSI gaming mot
The Cybersecurity and Infrastructure Security Agency (CISA) [confirmed Monday](https://www.bleepingcomputer.com/news/security/cisa-windows-bluehammer-flaw-now-exploited-by-ransomware-gangs/) that rans
A public proof-of-concept exploit for an unpatched Microsoft Defender vulnerability has been released, granting SYSTEM-level access on fully updated Windows machines. There is currently no patch avail
Microsoft's June 2026 Patch Tuesday — the largest in company history at [nearly 200 vulnerabilities patched in a single cycle](https://krebsonsecurity.com/2026/06/a-record-breaking-patch-tuesday-for-j
Belgium's Centre for Cybersecurity (CCB) issued an emergency warning Friday: threat actors are **actively exploiting** a recently patched critical remote code execution vulnerability in Windows Netlog
A researcher operating under the handle **Nightmare Eclipse** has published proof-of-concept (PoC) exploit code for one or more unpatched Microsoft zero-day vulnerabilities, touching off a public disp