A public spat between Microsoft and an independent security researcher reopens a long-running debate over who is responsible ...

Microsoft reverses course on legal action against security researchers publishing zero-day exploits.

A researcher accuses Microsoft of banning their GitHub and Microsoft accounts after publishing a Windows 11 BitLocker ...

Microsoft deleted the researcher's bug report account, suspended their GitHub, and threatened criminal charges, all while three zero-days remain unpatched.

Microsoft rushes to mitigate the new “YellowKey” flaw that may bypass BitLocker protections and expose encrypted Windows drives to attackers.

A disabled security setting meant to protect authentication across Android versions of key apps paved the way for attackers ...

A zero-day exploit circulating online allows people with physical access to a Windows 11 system to bypass default BitLocker protections and gain complete access to an encrypted drive within seconds.

Microsoft pushed out-of-band patches on May 21, 2026, for two actively exploited Windows Defender zero-days — one that lets a ...

Microsoft Exchange users are urged to mitigate a zero-day vulnerability that CISA has confirmed is under active exploitation.

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. This voice experience is generated by AI. Learn more. This ...

PCWorld reports on the ‘BlueHammer’ zero-day vulnerability that allows attackers to potentially take over Windows computers through privilege escalation. A frustrated security researcher published the ...

Attackers are already actively exploiting two vulnerabilities for which Microsoft issued patches on Nov. 12 as part of its monthly security update. And they could soon begin targeting two other ...