Windows Archives

Endpoint Security

‘GreatXML’ Zero-Day Exploit Bypasses BitLocker

The PoC exploits Microsoft Defender’s offline scan to spawn a SYSTEM shell when rebooting in Recovery Mode.

Ionut Arghire2 days ago

Vulnerabilities

New Windows Zero-Day Exploit ‘RoguePlanet’ Released

Exploiting a race condition in Microsoft Defender, the exploit leads to local privilege escalation to SYSTEM.

Ionut Arghire3 days ago

Endpoint Security

Microsoft Rolls Out Mitigations for ‘YellowKey’ BitLocker Bypass

The exploitation is mitigated by preventing the FsTx Auto Recovery Utility from starting when the WinRE image launches.

Ionut ArghireMay 20, 2026

Endpoint Security

Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks

Attackers are increasingly abusing Microsoft’s decades-old MSHTA utility to stealthily deliver stealers, loaders, and persistent malware through phishing, fake software downloads, and LOLBIN-based attack...

Kevin TownsendMay 19, 2026

Vulnerabilities

Researcher Drops MiniPlasma Windows Exploit for Unpatched 2020 CVE

The researcher dropped the MiniPlasma exploit that uses the original proof-of-concept (PoC) code targeting the bug.

Ionut ArghireMay 18, 2026

Vulnerabilities

Researcher Drops YellowKey, GreenPlasma Windows Zero-Days

YellowKey is a BitLocker bypass that requires physical access. GreenPlasma enables elevation of privileges to System.

Ionut ArghireMay 14, 2026

Vulnerabilities

Microsoft Patches 137 Vulnerabilities

Fresh security updates resolve critical flaws in Azure, Windows, Dynamics 365, and the SSO Plugin for Jira & Confluence.

Ionut ArghireMay 12, 2026

Vulnerabilities

No Patch for New PhantomRPC Privilege Escalation Technique in Windows

A fake RPC server can be used to listen for RPC requests and impersonate the target service to elevate privileges to System.

Ionut ArghireApril 28, 2026

Vulnerabilities

Incomplete Windows Patch Opens Door to Zero-Click Attacks

The initial vulnerability was exploited by Russia-linked APT28 in attacks against Ukraine and EU countries.

Ionut ArghireApril 27, 2026

Vulnerabilities

Organizations Warned of Exploited Windows, Adobe Acrobat Vulnerabilities

The security defects allow attackers to escalate privileges and execute arbitrary code remotely.

Ionut ArghireApril 14, 2026

Endpoint Security

Microsoft to Enable ‘Windows Baseline Security’ With New Runtime Integrity Safeguards

Windows will have runtime safeguards enabled by default, ensuring that only properly signed software runs.

Ionut ArghireFebruary 12, 2026

Endpoint Security

Microsoft to Refresh Windows Secure Boot Certificates in June 2026

After a decade and a half of service, the current certificates will expire, and new ones will be rolled out.

Ionut ArghireFebruary 11, 2026

Vulnerabilities

6 Actively Exploited Zero-Days Patched by Microsoft With February 2026 Updates

Microsoft’s Patch Tuesday updates fix roughly 60 vulnerabilities found in the company’s products.

Eduard KovacsFebruary 10, 2026

Identity & Access

Microsoft Moves Closer to Disabling NTLM

The next major Windows Server and Windows releases will have the deprecated authentication protocol disabled by default.

Ionut ArghireFebruary 2, 2026

Vulnerabilities

Microsoft Patches Exploited Windows Zero-Day, 111 Other Vulnerabilities

Two vulnerabilities patched this month by Microsoft were disclosed publicly before fixes were released.

Eduard KovacsJanuary 13, 2026

Vulnerabilities

Microsoft Patches 57 Vulnerabilities, Three Zero-Days

Microsoft has addressed a Windows vulnerability exploited as zero-day that allows attackers to obtain System privileges.

Ionut ArghireDecember 9, 2025

Endpoint Security

Microsoft Silently Mitigated Exploited LNK Vulnerability

Windows now displays in the properties tab of LNK files critical information that could reveal malicious code.

Ionut ArghireDecember 3, 2025

Artificial Intelligence

Microsoft Highlights Security Risks Introduced by New Agentic AI Feature

Without proper security controls, AI agents could perform malicious actions, such as data exfiltration and malware installation.

Ionut ArghireNovember 24, 2025

Vulnerabilities

Microsoft Patches Actively Exploited Windows Kernel Zero-Day

Microsoft’s latest Patch Tuesday updates address more than 60 vulnerabilities in Windows and other products.

Eduard KovacsNovember 11, 2025

Malware & Threats

Chinese APT Exploits Unpatched Windows Flaw in Recent Attacks

The Windows shortcut vulnerability has been seen in attacks conducted by Mustang Panda to drop the PlugX malware.

Ionut ArghireOctober 31, 2025

SECURITYWEEK NETWORK:

ICS:

All posts tagged "Windows"

Endpoint Security

‘GreatXML’ Zero-Day Exploit Bypasses BitLocker

Vulnerabilities

New Windows Zero-Day Exploit ‘RoguePlanet’ Released

Endpoint Security

Microsoft Rolls Out Mitigations for ‘YellowKey’ BitLocker Bypass

Endpoint Security

Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks

Vulnerabilities

Researcher Drops MiniPlasma Windows Exploit for Unpatched 2020 CVE

Vulnerabilities

Researcher Drops YellowKey, GreenPlasma Windows Zero-Days

Vulnerabilities

Microsoft Patches 137 Vulnerabilities

Vulnerabilities

No Patch for New PhantomRPC Privilege Escalation Technique in Windows

Vulnerabilities

Incomplete Windows Patch Opens Door to Zero-Click Attacks

Vulnerabilities

Organizations Warned of Exploited Windows, Adobe Acrobat Vulnerabilities

Endpoint Security

Microsoft to Enable ‘Windows Baseline Security’ With New Runtime Integrity Safeguards

Endpoint Security

Microsoft to Refresh Windows Secure Boot Certificates in June 2026

Vulnerabilities

6 Actively Exploited Zero-Days Patched by Microsoft With February 2026 Updates

Identity & Access

Microsoft Moves Closer to Disabling NTLM

Vulnerabilities

Microsoft Patches Exploited Windows Zero-Day, 111 Other Vulnerabilities

Vulnerabilities

Microsoft Patches 57 Vulnerabilities, Three Zero-Days

Endpoint Security

Microsoft Silently Mitigated Exploited LNK Vulnerability

Artificial Intelligence

Microsoft Highlights Security Risks Introduced by New Agentic AI Feature

Vulnerabilities

Microsoft Patches Actively Exploited Windows Kernel Zero-Day

Malware & Threats

Chinese APT Exploits Unpatched Windows Flaw in Recent Attacks

Featured

ICS/OT

Iranian Cyber Group Handala Claims Cal Water Hack

Cybercrime

Google Confirms Exploitation of Oracle PeopleSoft Zero-Day by ShinyHunters

Incident Response

Alert Fatigue Is Becoming a Security Threat of Its Own

ICS/OT

Siemens Says Desigo CC Files Flagged as Malware by Security Engines

Vulnerabilities

Microsoft Patches Exploited Exchange Server Vulnerability

ICS/OT

Critical HVAC and UPS Vulnerabilities Could Let Hackers Disrupt Data Centers

Vulnerabilities

ServiceNow Patches Vulnerability Exploited Against Some Customers

Latest News

Artificial Intelligence

Anthropic Says It Has Taken Its Latest AI Models Offline to Comply With New Export Controls

Management & Strategy

In Other News: Google Security Layoffs, AudiA6 Takedown, $400 Million Coupang Fine

Artificial Intelligence

Industry Reactions to Claude Fable 5: Feedback Friday

Vulnerabilities

Ivanti Sentry Exploitation Attempts Hitting Honeypots

Vulnerabilities

Chrome 149 Update Patches 28 Vulnerabilities

Artificial Intelligence

Anthropic Disputes Fable 5 AI Jailbreak

Cybercrime

Google Confirms Exploitation of Oracle PeopleSoft Zero-Day by ShinyHunters

Daily Briefing Newsletter