Windows

TeamPCP strikes again: Backdoored Telnyx PyPI package delivers malware

Aikido Security, Don't miss, Endor Labs, Hot stuff, Linux, macOS, Malware, News, open source, PyPI, SafeDep, supply chain attacks, supply chain compromise, Windows /

TeamPCP strikes again: Backdoored Telnyx PyPI package delivers malware 2026-03-27 at 15:46 By Zeljka Zorz TeamPCP continues is supply chain compromise rampage, with telnyx on PyPI being the latest maliciously modified package. What happened? Telnyx is a widely used software development kit (SDK) for the Telnyx AI Voice Agent service. According to Endor Labs researchers, […]

TeamPCP strikes again: Backdoored Telnyx PyPI package delivers malware Read More »

Microsoft patches 80+ vulnerabilities, six flagged as “more likely” to be exploited

Don't miss, Hot stuff, Immersive, Microsoft, MS Office, MS SQL Server, NCSC-NL, News, Outlook, Rapid7, security update, Trend Micro, vulnerability, Windows /

Microsoft patches 80+ vulnerabilities, six flagged as “more likely” to be exploited 2026-03-11 at 12:31 By Zeljka Zorz On March 2026 Patch Tuesday, Microsoft addressed 80+ vulnerabilities affecting its software and cloud services. Of these, two were publicly disclosed, but not actively exploited. Privilege escalation vulnerabilities abound The two publicly disclosed flaws are CVE-2026-21262, a

Microsoft patches 80+ vulnerabilities, six flagged as “more likely” to be exploited Read More »

Microsoft flips Windows Autopatch to default hotpatch security updates

Microsoft, News, patch, Windows /

Microsoft flips Windows Autopatch to default hotpatch security updates 2026-03-10 at 15:32 By Sinisa Markovic Microsoft is changing the default behavior in Windows Autopatch so that hotpatch security updates are enabled automatically for eligible devices managed through Microsoft Intune or the Microsoft Graph API starting with the May 2026 Windows security update. Windows Autopatch is

Microsoft flips Windows Autopatch to default hotpatch security updates Read More »

New Defender deployment tool streamlines Windows device onboarding with single executable

Microsoft, Microsoft Defender, News, update, Windows /

New Defender deployment tool streamlines Windows device onboarding with single executable 2026-03-03 at 14:06 By Anamarija Pogorelec Microsoft’s Defender deployment tool for Windows helps administrators manage device onboarding at scale with updated progress visibility and additional controls. Simplified deployment with added administrative controls The tool adapts to the operating system and supports endpoint security across

New Defender deployment tool streamlines Windows device onboarding with single executable Read More »

Microsoft taps ASUS and Dell for the Windows 365 Cloud PC strategy

Asus, Dell, hardware, Microsoft, News, Windows /

Microsoft taps ASUS and Dell for the Windows 365 Cloud PC strategy 2026-02-27 at 13:34 By Sinisa Markovic Microsoft is adding two new Windows 365 Cloud PC devices, the ASUS NUC 16 for Windows 365 and the Dell Pro Desktop for Windows 365, expanding hardware options for its cloud-based desktop service. Both devices are scheduled

Microsoft taps ASUS and Dell for the Windows 365 Cloud PC strategy Read More »

Windows 365 for Agents brings managed cloud PCs to autonomous workflows

agentic AI, Artificial Intelligence, Microsoft, News, Windows /

Windows 365 for Agents brings managed cloud PCs to autonomous workflows 2026-02-24 at 13:02 By Anamarija Pogorelec Microsoft’s Windows 365 for Agents is a cloud platform that gives AI agents secure access to cloud PCs. It lets builders run copilots, agents, and automated workflows in Windows environments without managing infrastructure. The platform includes security, policy

Windows 365 for Agents brings managed cloud PCs to autonomous workflows Read More »

Microsoft extends security patching for three Windows products at a price

cybersecurity, Don't miss, Microsoft, News, update, Windows /

Microsoft extends security patching for three Windows products at a price 2026-02-24 at 11:38 By Sinisa Markovic Support is ending for three Windows products released in 2016, with deadlines beginning in October 2026. Windows 10 Enterprise LTSB 2016 and Windows 10 IoT Enterprise 2016 LTSB will reach end of support on October 13, 2026, followed

Microsoft extends security patching for three Windows products at a price Read More »

Why a decade-old EnCase driver still works as an EDR killer

cyberattack, Don't miss, drivers, Endpoint Security, Hot stuff, intrusion detection, News, Windows /

Why a decade-old EnCase driver still works as an EDR killer 2026-02-05 at 14:02 By Zeljka Zorz Attackers are leaning on a new EDR killer malware that can shut down 59 widely used endpoint security products by misusing a kernel driver that once shipped with Guidance Software’s EnCase digital forensics tool, Huntress researchers warn. This

Why a decade-old EnCase driver still works as an EDR killer Read More »

Microsoft Moves Closer to Disabling NTLM

authentication, Identity & Access, NTLM, Windows /

Microsoft Moves Closer to Disabling NTLM 2026-02-02 at 13:44 By Ionut Arghire The next major Windows Server and Windows releases will have the deprecated authentication protocol disabled by default. The post Microsoft Moves Closer to Disabling NTLM appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Microsoft Moves Closer to Disabling NTLM Read More »

Microsoft sets a path to switch off NTLM across Windows

authentication, cybersecurity, Microsoft, News, Windows /

Microsoft sets a path to switch off NTLM across Windows 2026-02-02 at 13:13 By Sinisa Markovic Windows is shifting to a more secure authentication approach, moving away from New Technology LAN Manager (NTLM) and toward stronger, Kerberos-based options. NTLM has been part of Windows for decades and continues to appear in some environments, particularly where

Microsoft sets a path to switch off NTLM across Windows Read More »

Google disrupts proxy network used by 550+ threat groups

Android, attack tools, Don't miss, Google, Hot stuff, News, Proxy, Windows /

Google disrupts proxy network used by 550+ threat groups 2026-01-29 at 18:27 By Zeljka Zorz Google has disrupted Ipidea, a massive residential proxy network consisting of user devices that are being used as the last-mile link in cyberattack chains. “In a single seven day period in January 2026, GTIG observed over 550 individual threat groups

Google disrupts proxy network used by 550+ threat groups Read More »

Attackers use Windows App-V scripts to slip infostealer past enterprise defenses

Blackpoint Cyber, Don't miss, enterprise, Hot stuff, Malware, News, PowerShell, Windows, Windows Server /

Attackers use Windows App-V scripts to slip infostealer past enterprise defenses 2026-01-27 at 17:17 By Zeljka Zorz A malware delivery campaign detailed by Blackpoint researchers employs an impressive array of tricks to deliver an infostealer to employees without triggering enterprise defenses or close examination by security researchers. The attackers aim to get the Amatera Stealer

Attackers use Windows App-V scripts to slip infostealer past enterprise defenses Read More »

Microsoft introduces winapp, an open-source CLI for building Windows apps

GitHub, Microsoft, News, open source, software, Windows /

Microsoft introduces winapp, an open-source CLI for building Windows apps 2026-01-23 at 07:24 By Anamarija Pogorelec Microsoft has released winapp, a new command line interface aimed at simplifying the process of building Windows applications. The open-source tool targets developers who rely on terminal based workflows and want a consistent way to create, configure, and manage

Microsoft introduces winapp, an open-source CLI for building Windows apps Read More »

Microsoft Patches Exploited Windows Zero-Day, 111 Other Vulnerabilities

exploited, Patch Tuesday, Vulnerabilities, vulnerability, Windows, Zero-Day /

Microsoft Patches Exploited Windows Zero-Day, 111 Other Vulnerabilities 2026-01-13 at 21:52 By Eduard Kovacs Two vulnerabilities patched this month by Microsoft were disclosed publicly before fixes were released. The post Microsoft Patches Exploited Windows Zero-Day, 111 Other Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Microsoft Patches Exploited Windows Zero-Day, 111 Other Vulnerabilities Read More »

40 open-source tools redefining how security teams secure the stack

Android, cybersecurity, Don't miss, GitHub, Hot stuff, Linux, macOS, News, open source, software, Windows /

40 open-source tools redefining how security teams secure the stack 2025-12-11 at 09:07 By Anamarija Pogorelec Open source security software has become a key way for teams to get flexibility, transparency, and capability without licensing costs. The free tools in this roundup address problems security teams deal with, from managing large environments to catching misconfigurations

40 open-source tools redefining how security teams secure the stack Read More »

Microsoft Patches 57 Vulnerabilities, Three Zero-Days

Featured, Patch Tuesday, Vulnerabilities, vulnerability, Windows, Zero-Day /

Microsoft Patches 57 Vulnerabilities, Three Zero-Days 2025-12-10 at 00:44 By Ionut Arghire Microsoft has addressed a Windows vulnerability exploited as zero-day that allows attackers to obtain System privileges. The post Microsoft Patches 57 Vulnerabilities, Three Zero-Days appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Microsoft Patches 57 Vulnerabilities, Three Zero-Days Read More »

Microsoft Silently Mitigated Exploited LNK Vulnerability

Endpoint Security, Featured, LNK, Microsoft, patch, Vulnerabilities, Windows /

Microsoft Silently Mitigated Exploited LNK Vulnerability 2025-12-03 at 14:35 By Ionut Arghire Windows now displays in the properties tab of LNK files critical information that could reveal malicious code. The post Microsoft Silently Mitigated Exploited LNK Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Microsoft Silently Mitigated Exploited LNK Vulnerability Read More »

Fake “Windows Update” screens fuels new wave of ClickFix attacks

Don't miss, Hot stuff, Huntress, Malware, News, social engineering, Windows /

Fake “Windows Update” screens fuels new wave of ClickFix attacks 2025-11-25 at 15:02 By Zeljka Zorz A convincing (but fake) “Windows Update” screen can be the perfect lure for tricking users into infecting their computers with malware. Add a multi-stage delivery chain with some offbeat techniques, and infostealer operators have everything they need to slip

Fake “Windows Update” screens fuels new wave of ClickFix attacks Read More »

Microsoft Highlights Security Risks Introduced by New Agentic AI Feature

agentic AI, AI, Artificial Intelligence, Endpoint Security, Microsoft, security, Windows /

Microsoft Highlights Security Risks Introduced by New Agentic AI Feature 2025-11-24 at 15:32 By Ionut Arghire Without proper security controls, AI agents could perform malicious actions, such as data exfiltration and malware installation. The post Microsoft Highlights Security Risks Introduced by New Agentic AI Feature appeared first on SecurityWeek. This article is an excerpt from

Microsoft Highlights Security Risks Introduced by New Agentic AI Feature Read More »

7-Zip vulnerability is being actively exploited, NHS England warns (CVE-2025-11001)

7-Zip, Don't miss, Hot stuff, News, NHS, PoC, vulnerability, Windows /

7-Zip vulnerability is being actively exploited, NHS England warns (CVE-2025-11001) 2025-11-19 at 16:46 By Zeljka Zorz NHS England Digital, the technology arm of the publicly-funded health service for England, has issued a warning about a 7-Zip vulnerability (CVE-2025-11001) being exploited by attackers. “Active exploitation of CVE-2025-11001 has been observed in the wild,” the alert says,

7-Zip vulnerability is being actively exploited, NHS England warns (CVE-2025-11001) Read More »

Scroll to Top