Tag: windows
-
NDSS 2025 Detecting Ransomware Despite I/O Overhead: A Practical Multi-Staged Approach
Tags: attack, conference, cyber, detection, exploit, Internet, monitoring, network, phishing, ransomware, risk, windows, zero-daySession 10B: Ransomware Authors, Creators & Presenters: Christian van Sloun (RWTH Aachen University), Vincent Woeste (RWTH Aachen University), Konrad Wolsing (RWTH Aachen University & Fraunhofer FKIE), Jan Pennekamp (RWTH Aachen University), Klaus Wehrle (RWTH Aachen University) PAPER Detecting Ransomware Despite I/O Overhead: A Practical Multi-Staged Approach Ransomware attacks have become one of the most widely…
-
APT Attacks Target Indian Government Using SHEETCREEP, FIREPOWER, and MAILCREEP – Part 2
Tags: access, ai, api, apt, attack, backdoor, backup, cloud, control, credentials, data, dns, email, exploit, github, google, government, group, india, infection, infrastructure, Internet, linux, malicious, malware, microsoft, monitoring, network, phishing, powershell, programming, service, tactics, threat, tool, update, windowsThis is Part 2 of our two-part technical analysis on the Gopher Strike and Sheet Attack campaigns. For details on the Gopher Strike campaign, go to Part 1.IntroductionIn September 2025, Zscaler ThreatLabz uncovered three additional backdoors, SHEETCREEP, FIREPOWER, and MAILCREEP, used to power the Sheet Attack campaign. In Part 2 of this series, ThreatLabz will…
-
Microsoft’s Patch Fixes Are Breaking Windows, Forcing a Second Emergency Update
Microsoft issued a second emergency Windows patch in January after earlier fixes caused new bugs, raising concerns about update quality and reliability. The post Microsoft’s Patch Fixes Are Breaking Windows, Forcing a Second Emergency Update appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-microsoft-second-emergency-windows-patch-january/
-
Attackers use Windows App-V scripts to slip infostealer past enterprise defenses
A malware delivery campaign detailed by Blackpoint researchers employs an impressive array of tricks to deliver an infostealer to employees without triggering enterprise … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/27/malware-delivery-via-windows-app-v-lolbin/
-
Windows Server vNext mit ReFS-Boot, neuen Lizenzen und Cluster-Updates – So viel ändert sich bei Windows Server 2028
First seen on security-insider.de Jump to article: www.security-insider.de/windows-server-2028-neuerungen-a-d5da3a9c95422e52b17f4c2e3a3c640b/
-
Critical CERT-In Advisories January 2026: SAP, Microsoft, and Atlassian Vulnerabilities
January 2026 was a wake-up month for enterprise security teams. In a single week, CERT-In released three high-severity advisories exposing critical flaws across SAP, Microsoft, and Atlassian, the very platforms that run finance systems, identity layers, developer pipelines, and collaboration tools inside most enterprises. These weren’t theoretical bugs. One Windows vulnerability was already being exploited……
-
New ClickFix attacks abuse Windows App-V scripts to push malware
A new malicious campaign mixes the ClickFix method with fake CAPTCHA and a signed Microsoft Application Virtualization (App-V) script to ultimately deliver the Amatera infostealing malware. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-clickfix-attacks-abuse-windows-app-v-scripts-to-push-malware/
-
APT Attacks Target Indian Government Using GOGITTER, GITSHELLPAD, and GOSHELL – Part 1
Tags: access, adobe, ai, antivirus, api, apt, attack, authentication, backdoor, backup, cloud, control, data, data-breach, detection, email, endpoint, github, google, government, group, india, infection, infrastructure, injection, Internet, malicious, malware, microsoft, network, phishing, service, spear-phishing, threat, tool, update, windowsIntroductionIn September 2025, Zscaler ThreatLabz identified two campaigns, tracked as Gopher Strike and Sheet Attack, by a threat actor that operates in Pakistan and primarily targets entities in the Indian government. In both campaigns, ThreatLabz identified previously undocumented tools, techniques, and procedures (TTPs). While these campaigns share some similarities with the Pakistan-linked Advanced Persistent Threat (APT) group, APT36, we…
-
Microsoft Issues KB5078127 OOB Patch After Reports of Outlook Freezing and File System Instability
Microsoft has released two critical out-of-band (OOB) security patches targeting widespread issues affecting Windows 11 users following January’s monthly security updates. The emergency patches, KB5078127 and KB5078132, address severe file system failures and application crashes that emerged after the January 13 security release. The primary culprit behind these issues is unexpected complications introduced by KB5073455…
-
Deutsche Nutzer klammern: Auf fast jedem zweiten Privat-PC läuft noch Windows 10
Laut Eset befindet sich Deutschland beim Wechsel von Windows 10 auf Windows 11 noch im Dornröschenschlaf. Doch es gibt gute Gründe dafür. First seen on golem.de Jump to article: www.golem.de/news/forscher-warnen-windows-10-noch-auf-fast-jedem-zweiten-deutschen-privat-pc-2601-204609.html
-
Forscher warnen: Windows 10 noch auf fast jedem zweiten deutschen Privat-PC
Laut Eset befindet sich Deutschland beim Wechsel von Windows 10 auf Windows 11 noch im Dornröschenschlaf. Doch es gibt gute Gründe dafür. First seen on golem.de Jump to article: www.golem.de/news/forscher-warnen-windows-10-noch-auf-fast-jedem-zweiten-deutschen-privat-pc-2601-204609.html
-
Januar-Updates lösen unter Windows 11 Boot-Fehler aus
Die Liste der Probleme mit den Januar-Updates für Windows wird immer länger. Einige Rechner lassen sich wohl nicht mehr fehlerfrei starten. First seen on golem.de Jump to article: www.golem.de/news/microsoft-januar-updates-loesen-unter-windows-11-boot-fehler-aus-2601-204591.html
-
Überwachung – Microsoft hat Bitlocker-Schlüssel heimlich an das FBI weitergegeben
Um Windows-Geräte zu entschlüsseln, hat Microsoft Bitlocker-Keys an das FBI übergeben. Möglich ist der Zugang durch eine Backup-Funktion. First seen on computerbase.de Jump to article: www.computerbase.de/news/netzpolitik/ueberwachung-microsoft-hat-bitlocker-schluessel-heimlich-an-das-fbi-weitergegeben.95907
-
Microsoft investigates Windows 11 boot failures after January updates
Microsoft is investigating reports that some Windows 11 devices are failing to boot with “UNMOUNTABLE_BOOT_VOLUME” errors after installing the January 2026 Patch Tuesday security updates. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-investigates-windows-11-boot-failures-after-january-updates/
-
Microsoft releases emergency OOB update to fix Outlook freezes
Microsoft has released emergency, out-of-band updates on Saturday for Windows 10, Windows 11, and Windows Server to fix an issue that prevented Microsoft Outlook classic from opening when using PSTs stored in cloud storage. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-releases-emergency-oob-update-to-fix-outlook-freezes/
-
FBI Accessed Windows Laptops After Microsoft Shared BitLocker Recovery Keys
If you are using a Windows PC, your privacy and security are nothing short of a myth, and this incident proves it. First seen on hackread.com Jump to article: hackread.com/fbi-windows-laptops-microsoft-bitlocker-recovery-keys/
-
Microsoft Open-Sources winapp, a New CLI Tool for Streamlined Windows App Development
Microsoft has announced the public preview of the Windows App Development CLI (winapp), a new open-source command-line tool designed to simplify Windows application development across multiple frameworks and toolchains. The tool is now available on GitHub for developers working outside traditional Visual Studio or MSBuild environments. The winapp CLI targets developers using cross-platform frameworks including…
-
Microsoft Confirms Court-Ordered BitLocker Key Releases
FBI Accessed Encrypted Windows Devices Via BitLocker Keys, Microsoft Says. Microsoft confirmed it handed over BitLocker recovery keys to the FBI in 2025 under court order, raising concerns over cloud-stored encryption keys and whether default designs that prioritize recovery convenience and efficiency weaken user control and security. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/microsoft-confirms-court-ordered-bitlocker-key-releases-a-30593
-
Microsoft Confirms Court-Ordered BitLocker Key Releases
FBI Accessed Encrypted Windows Devices Via BitLocker Keys, Microsoft Says. Microsoft confirmed it handed over BitLocker recovery keys to the FBI in 2025 under court order, raising concerns over cloud-stored encryption keys and whether default designs that prioritize recovery convenience and efficiency weaken user control and security. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/microsoft-confirms-court-ordered-bitlocker-key-releases-a-30593
-
Microsoft Confirms Court-Ordered BitLocker Key Releases
FBI Accessed Encrypted Windows Devices Via BitLocker Keys, Microsoft Says. Microsoft confirmed it handed over BitLocker recovery keys to the FBI in 2025 under court order, raising concerns over cloud-stored encryption keys and whether default designs that prioritize recovery convenience and efficiency weaken user control and security. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/microsoft-confirms-court-ordered-bitlocker-key-releases-a-30593
-
Kaspersky Security Bulletin – Täglich 500.000 neue Bedrohungen, hauptsächlich für Windows-Nutzer
First seen on security-insider.de Jump to article: www.security-insider.de/cybersecurity-report-2025-spyware-password-theft-increase-a-660ef79836761e78488632c9aeb17357/
-
Kaspersky Security Bulletin – Täglich 500.000 neue Bedrohungen, hauptsächlich für Windows-Nutzer
First seen on security-insider.de Jump to article: www.security-insider.de/cybersecurity-report-2025-spyware-password-theft-increase-a-660ef79836761e78488632c9aeb17357/
-
Microsoft introduces winapp, an open-source CLI for building Windows apps
Microsoft has released winapp, a new command line interface aimed at simplifying the process of building Windows applications. The open-source tool targets developers who rely … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/23/microsoft-introduces-winapp-an-open-source-cli-for-building-windows-apps/
-
Microsoft updates Notepad and Paint with more AI features
Microsoft is rolling out new artificial intelligence features with the latest updates to the Notepad and Paint apps for Windows 11 Insiders. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-updates-notepad-and-paint-with-more-ai-features/
-
Konsolidierte Update-Architektur für Windows-Umgebungen – Windows Update Orchestration Platform
First seen on security-insider.de Jump to article: www.security-insider.de/windows-update-orchestration-platform-a-0748a183171dae51464fd15639b8a896/
-
ClearFake malware Exploits Proxy Execution to Run Malicious PowerShell Commands via Trusted Windows Feature
Tags: cyber, detection, endpoint, exploit, injection, malicious, malware, powershell, vulnerability, windowsA sophisticated evolution of the ClearFake malware campaign has emerged, deploying advanced evasion techniques that abuse legitimate Windows components to bypass endpoint detection systems. The operation, which has compromised hundreds of websites since August 2025, now leverages a command injection vulnerability in a trusted Windows script to silently execute malicious PowerShell code, while hosting its…
-
Microsoft shares workaround for Outlook freezes after Windows update
Microsoft shared a temporary workaround for customers experiencing Outlook freezes after installing this month’s Windows security updates. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-shares-workaround-for-outlook-freezes-after-windows-update/