#windows-vulnerabilities

[ follow ]
#cybersecurity #microsoft #patch-tuesday #zero-click-attacks #apt28 #credential-theft #cve-2026-21510 #hacking
Information security
fromSecurityWeek
1 week ago

Incomplete Windows Patch Opens Door to Zero-Click Attacks

Incomplete patching of Windows vulnerabilities led to new zero-click attack vectors, enabling credential theft without user interaction.
Information security
fromTechCrunch
2 weeks ago

Hackers are abusing unpatched Windows security flaws to hack into organizations | TechCrunch

Hackers exploited Windows vulnerabilities published by a researcher, affecting Windows Defender and allowing high-level access.
fromSecurityWeek
2 months ago

6 Actively Exploited Zero-Days Patched by Microsoft With February 2026 Updates

CVE-2026-21510: a Windows SmartScreen and Windows Shell security prompts bypass that can be exploited by convincing the targeted user to open a malicious link or shortcut file. CVE-2026-21514: a vulnerability that allows an attacker to bypass OLE mitigations in Microsoft 365 and Office by tricking the target into opening a malicious Office file. CVE-2026-21513: an Internet Explorer issue that allows an attacker to bypass security controls and potentially execute code by convincing the victim to open a malicious HTML or LNK file.
Information security
Privacy professionals
fromTechRepublic
1 year ago

Patch Tuesday: Microsoft Fixes 134 Vulnerabilities, Including 1 Zero-Day

Microsoft's April Patch Tuesday update addressed 134 flaws, including a zero-day vulnerability, raising concerns about security in Windows systems.
[ Load more ]