The "Windows bug" that mysteriously crashed File Explorer

An old debugging tale reveals how mysterious File Explorer crashes on Windows were not related to the OS or Microsoft at all.

CISA orders feds to patch BlueHammer flaw exploited as zero-day

CISA has ordered U.S. federal agencies to patch a Microsoft Defender privilege escalation flaw (dubbed BlueHammer) that has ...
SecurityWeek

Recent Microsoft Defender Vulnerability Exploited as Zero-Day

Threat actors have been exploiting the BlueHammer Microsoft Defender vulnerability as a zero-day to gain System privileges.

Microsoft to Integrate Anthropic's Mythos Into Its Security Development Program

Anthropic has said the current iteration, Claude Mythos Preview, will be first deployed to a select group of ⁠companies as ...

Fake Windows update installs hidden malware

Scammers built a convincing fake Windows update site that installs password-stealing malware. Learn how the multi-stage ...
Hackaday

This Week In Security: Docker Auth, Windows Tools, And A Very Full Patch Tuesday

CVE-2026-34040 lets attackers bypass some Docker authentication plugins by allowing an empty request body. Present since 2024, this bug was caused by a previous fix to the auth workflow. In the ...
The Hacker News

Microsoft Issues Patches for SharePoint Zero-Day and 168 Other New Vulnerabilities

Microsoft fixes 169 vulnerabilities including exploited SharePoint CVE-2026-32201, prompting CISA remediation by April 28, ...
Dark Reading

Privilege Elevation Dominates Massive Microsoft Patch Update

Elevation-of-privilege bugs accounted for more than half of the 165 vulnerabilities patched, with two zero-days in that mix.

Analysis of one billion CISA KEV remediation records exposes limits of human-scale security

Analysis of 1 billion CISA KEV remediation records reveal a breaking point for human-scale security. Qualys shows most ...
24/7 Wall St

CrowdStrike CEO warns AI will trigger explosion of cyber attacks with shrinking patch windows

CrowdStrike posted record results with $5.25 billion ending ARR (up 24% year-over-year), $330.7 million net new ARR in Q4 (up 47%), and Falcon Flex ARR grew 120% year-over-year to $1.69 billion, ...
CSOonline

Patch windows collapse as time-to-exploit accelerates

AI and the industrialization of cybercrime are helping attackers double the number of high- and critical-severity known vulnerabilities they can exploit — in half the time. The gap between ...