Tag: windows

Microsoft flips Windows Autopatch to default hotpatch security updates

Mar 10, 2026 3:48 PM

Tags: microsoft, update, windows

Microsoft is changing the default behavior in Windows Autopatch so that hotpatch security updates are enabled automatically for eligible devices managed through Microsoft … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/10/microsoft-windows-autopatch-default-security-updates/
Microsoft to enable Windows hotpatch security updates by default

Mar 10, 2026 12:47 PM

Tags: api, microsoft, update, windows

Microsoft will turn on hotpatch security updates by default for all eligible Windows devices managed through Microsoft Intune and the Microsoft Graph API, beginning with the May 2026 Windows security update. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-to-enable-hotpatch-security-updates-by-default-in-may/
Bug bounties are broken, and the best security pros are moving on

Mar 10, 2026 7:47 AM

Tags: organized, penetration-testing, windows

Penetration testing engagements are organized as scheduled contracts with defined scope, set testing windows, and direct communication channels with client teams. Cobalt’s … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/10/cobalt-ptaas-gains-pentester-support/
Tenable Named a Challenger in the 2026 Gartner® Magic Quadrant for CPS Protection Platforms

Mar 9, 2026 7:48 PM

Tags: access, advisory, ai, attack, business, cloud, compliance, control, cyber, data, defense, detection, firmware, gartner, guide, Hardware, identity, incident, intelligence, metric, monitoring, network, resilience, risk, service, software, technology, threat, tool, unauthorized, update, usa, vulnerability, vulnerability-management, windows

Security is no longer a siloed effort. Find out how Tenable integrates mature industrial security capabilities into an enterprise-ready approach for unified exposure management. Key takeaways In our view, this year’s Gartner Magic Quadrant for CPS Protection Platforms validates a critical market transition away from a sole focus on niche, standalone OT tools. By integrating…
Tenable Named a Challenger in the 2026 Gartner® Magic Quadrant for CPS Protection Platforms

Mar 9, 2026 7:48 PM

Tags: access, advisory, ai, attack, business, cloud, compliance, control, cyber, data, defense, detection, firmware, gartner, guide, Hardware, identity, incident, intelligence, metric, monitoring, network, resilience, risk, service, software, technology, threat, tool, unauthorized, update, usa, vulnerability, vulnerability-management, windows

Security is no longer a siloed effort. Find out how Tenable integrates mature industrial security capabilities into an enterprise-ready approach for unified exposure management. Key takeaways In our view, this year’s Gartner Magic Quadrant for CPS Protection Platforms validates a critical market transition away from a sole focus on niche, standalone OT tools. By integrating…
Fake Claude Code install pages hit Windows and Mac users with infostealers

Mar 9, 2026 4:46 PM

Tags: password, windows

Researchers uncovered fake Claude Code install pages spreading infostealers that steal passwords and browser sessions. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/fake-claude-code-install-pages-hit-windows-and-mac-users-with-infostealers/
Chinese Cyber Threat Lurks In Critical Asian Sectors for Years

Mar 9, 2026 4:46 PM

Tags: china, cyber, linux, malware, open-source, threat, tool, windows

An undefined Chinese-speaking actor wields a combo of custom malware, open source tools, and LOTL binaries against Windows and Linux, likely for spying. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/chinese-cyber-threat-critical-asian-sectors
Microsoft still working to fix Windows Explorer white flashes

Mar 9, 2026 3:48 PM

Tags: microsoft, windows

Microsoft has confirmed that it’s still working to fully address a known issue that causes bright white flashes when opening the File Explorer on some Windows 11 systems. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-still-working-to-fix-windows-explorer-white-flashes/
BoryptGrab Malware Abuses GitHub to Steal Browser and Crypto Wallet Data

Mar 9, 2026 2:46 PM

Tags: crypto, cyber, data, github, malware, tool, windows

A new Windows stealer dubbed BoryptGrab is being distributed through a large, ongoing campaign abusing fake GitHub repositories that pose as free tools, game cheats, and popular utilities. The malware focuses on stealing browser data, cryptocurrency wallet information, and system details, while also grabbing screenshots, common files, Telegram data, Discord tokens, and stored passwords. Attackers created more…
Für 220.000 US-Dollar: Exploit für gefährliche Windows-Lücke steht zum Verkauf

Mar 9, 2026 11:48 AM

Tags: bug, exploit, hacker, windows

Ein Hacker versucht, aus einer Sicherheitslücke in Windows Profit zu schlagen. Er verlangt 220.000 US-Dollar für einen Exploit, der Systemrechte verleiht. First seen on golem.de Jump to article: www.golem.de/news/fuer-220-000-us-dollar-exploit-fuer-gefaehrliche-windows-luecke-steht-zum-verkauf-2603-206241.html
Rogues gallery: 15 worst ransomware groups active today

Mar 9, 2026 10:47 AM

Tags: access, ai, alphv, apt, attack, backup, breach, cloud, cyber, cybercrime, dark-web, data, data-breach, defense, detection, email, encryption, endpoint, exploit, extortion, finance, government, group, healthcare, infrastructure, insurance, intelligence, korea, law, leak, linux, lockbit, malicious, malware, moveIT, network, north-korea, organized, phishing, ransom, ransomware, russia, service, social-engineering, software, strategy, threat, tool, usa, vmware, vpn, vulnerability, windows, zero-day

Black Basta: History: Black Basta appeared on the ransomware scene in early 2022 and is believed to be a spin-off from Conti, a group notorious for attacking major organizations.How it works: Black Basta usually deploys malware through exploitation of known vulnerabilities and social engineering campaigns. “Employees in the target environment are email bombed and then…
Termite ransomware breaches linked to ClickFix CastleRAT attacks

Mar 7, 2026 6:47 PM

Tags: attack, breach, malware, ransomware, threat, windows

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/termite-ransomware-breaches-linked-to-clickfix-castlerat-attacks/
One click on this fake Google Meet update can give attackers control of your PC

Mar 7, 2026 5:47 AM

Tags: control, google, update, windows

We found a fake Google Meet update that enrolls the victim’s Windows PC in an attacker’s device management system. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/one-click-on-this-fake-google-meet-update-can-give-attackers-control-of-your-pc/
ClickFix attackers using new tactic to evade detection, says Microsoft

Mar 6, 2026 11:48 PM

Tags: access, attack, awareness, blockchain, ciso, computer, control, crypto, cybersecurity, defense, detection, email, endpoint, infosec, infrastructure, injection, login, malicious, malware, microsoft, phishing, powershell, risk, tactics, tool, training, windows

AppData\Local that is then invoked through cmd.exe to write a VBScript to %Temp%. The batch script is executed via cmd.exe with the /launched command-line argument, and is then executed again through MSBuild.exe, resulting in LOLBin abuse. The script connects to Crypto Blockchain RPC endpoints, indicating etherhiding technique, and also performs QueueUserAPC()-based code injection into chrome.exe…
Middle East Conflict Fuels Opportunistic Cyber Attacks

Mar 6, 2026 9:47 PM

Tags: access, advisory, api, apt, attack, authentication, awareness, backdoor, best-practice, breach, browser, business, chrome, cloud, crypto, cyber, cybercrime, cybersecurity, data, defense, endpoint, exploit, fraud, google, government, identity, infection, Internet, iran, iraq, malicious, malware, mfa, middle-east, military, monitoring, network, password, phishing, PurpleTeam, radius, risk, risk-assessment, scam, service, software, technology, theft, threat, training, unauthorized, update, vulnerability, windows, zero-day

IntroductionThreat actors often take advantage of major global events to fuel interest in their malicious activities. Zscaler ThreatLabz is diligently tracking a surge in cybercriminal activity that capitalizes on the elevated political climate in the Middle East. This increased malicious activity includes discoveries that are directly tied to the ongoing conflict, alongside other related findings. ThreatLabz…
Bitwarden Brings Passkey Logins to Windows 11, Expanding Passwordless Sign-Ins

Mar 6, 2026 6:47 PM

Tags: login, microsoft, passkey, windows

Bitwarden now supports passkey logins on Windows 11 for Microsoft Entra ID users, extending passwordless sign-ins to device authentication. The post Bitwarden Brings Passkey Logins to Windows 11, Expanding Passwordless Sign-Ins appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-bitwarden-passkey-windows-11-sign-in/
Microsoft spots ClickFix campaign getting users to self-pwn on Windows Terminal

Mar 6, 2026 3:48 PM

Tags: malicious, microsoft, windows

Crooks tweak familiar copy-paste ruse so that victims run malicious commands themselves First seen on theregister.com Jump to article: www.theregister.com/2026/03/06/microsoft_spots_clickfix_campaign_abusing/
Microsoft warns of ClickFix campaign exploiting Windows Terminal to deliver Lumma Stealer

Mar 6, 2026 3:48 PM

Tags: attack, exploit, malicious, microsoft, risk, social-engineering, windows

Microsoft warns of ClickFix campaign using Windows Terminal to deliver Lumma Stealer via social engineering attacks. Microsoft revealed a new ClickFix campaign where attackers exploit Windows Terminal to run a complex attack chain, ultimately deploying Lumma Stealer malware. The campaign uses social engineering to trick users into executing malicious commands, highlighting growing risks to Windows…
Microsoft finally gets around to fixing Windows 10 Recovery Environment after breaking it in October

Mar 6, 2026 1:47 PM

Tags: microsoft, update, windows

Released from the curse of the update bork fairy First seen on theregister.com Jump to article: www.theregister.com/2026/03/06/microsoft_finally_gets_around_to/
New Linux Rootkits Leverage Advanced eBPF and io_uring Techniques for Stealthy Attacks

Mar 6, 2026 10:47 AM

Tags: attack, cloud, container, cyber, infrastructure, injection, iot, linux, threat, windows

Linux rootkits have historically received less attention than their Windows counterparts, but the rapid adoption of Linux in cloud infrastructure, containers, and IoT devices has shifted the threat landscape. Attackers are constantly innovating, and over the past two decades, Linux rootkits have evolved significantly. While early threats relied on easily detectable userland shared object injections…
China-Linked Hackers Use TernDoor, PeerTime, BruteEntry in South American Telecom Attacks

Mar 6, 2026 10:47 AM

Tags: attack, china, cisco, hacker, infrastructure, linux, threat, usa, windows

A China-linked advanced persistent threat (APT) actor has been targeting critical telecommunications infrastructure in South America since 2024, targeting Windows and Linux systems and edge devices with three different implants.The activity is being tracked by Cisco Talos under the moniker UAT-9244, describing it as closely associated with another cluster known as FamousSparrow.It’s worth First seen…
Microsoft Reveals ClickFix Campaign Using Windows Terminal to Deploy Lumma Stealer

Mar 6, 2026 9:48 AM

Tags: attack, microsoft, social-engineering, windows

Microsoft on Thursday disclosed details of a new widespread ClickFix social engineering campaign that has leveraged the Windows Terminal app as a way to activate a sophisticated attack chain and deploy the Lumma Stealer malware.The activity, observed in February 2026, makes use of the terminal emulator program instead of instructing users to launch the Windows…
Chinese state hackers target telcos with new malware toolkit

Mar 6, 2026 12:47 AM

Tags: china, hacker, linux, malware, network, service, threat, usa, windows

A China-linked advanced persistent threat actor tracked as UAT-9244 has been targeting telecommunication service providers in South America since 2024, compromising Windows, Linux, and network-edge devices. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/chinese-state-hackers-target-telcos-with-new-malware-toolkit/
Where Multi-Factor Authentication Stops and Credential Abuse Starts

Mar 5, 2026 12:47 PM

Tags: access, authentication, breach, credentials, identity, mfa, microsoft, network, okta, password, windows

Organizations typically roll out multi-factor authentication (MFA) and assume stolen passwords are no longer enough to access systems. In Windows environments, that assumption is often wrong. Attackers still compromise networks every day using valid credentials. The issue is not MFA itself, but coverage. Enforced through an identity provider (IdP) such as Microsoft Entra ID, Okta,…
Nach Monaten gefixt: Microsoft gesteht Recovery-Panne unter Windows 10

Mar 5, 2026 9:47 AM

Tags: microsoft, windows

Die Wiederherstellungsumgebung von Windows 10 ist auf einigen Systemen seit Oktober 2025 unbrauchbar. Eine Lösung gibt es erst jetzt. First seen on golem.de Jump to article: www.golem.de/news/nach-monaten-gefixt-microsoft-gesteht-recovery-panne-unter-windows-10-2603-206117.html
14 old software bugs that took way too long to squash

Mar 5, 2026 8:46 AM

Tags: access, api, attack, authentication, automation, bug-bounty, communications, computer, control, credentials, cve, cvss, cyber, data, data-breach, dns, dos, encryption, exploit, flaw, hacker, Hardware, infosec, infrastructure, Internet, kaspersky, linux, malicious, malware, microsoft, mitigation, network, nist, open-source, password, programming, remote-code-execution, risk, service, software, stuxnet, supply-chain, technology, theft, threat, tool, update, usa, vulnerability, windows, zero-day

Age: 30 yearsDate introduced: 1995Date fixed: February 2026Researchers unearthed a legacy flaw in the widely used libpng open-source library that had existed since the technology was first released more than 30 years ago.The heap buffer overflow vulnerability (CVE-2026-25646) meant that applications using the flawed software would crash when presented with a maliciously constructed PNG raster…
14 old software bugs that took way too long to squash

Mar 5, 2026 8:46 AM

Tags: access, api, attack, authentication, automation, bug-bounty, communications, computer, control, credentials, cve, cvss, cyber, data, data-breach, dns, dos, encryption, exploit, flaw, hacker, Hardware, infosec, infrastructure, Internet, kaspersky, linux, malicious, malware, microsoft, mitigation, network, nist, open-source, password, programming, remote-code-execution, risk, service, software, stuxnet, supply-chain, technology, theft, threat, tool, update, usa, vulnerability, windows, zero-day

Age: 30 yearsDate introduced: 1995Date fixed: February 2026Researchers unearthed a legacy flaw in the widely used libpng open-source library that had existed since the technology was first released more than 30 years ago.The heap buffer overflow vulnerability (CVE-2026-25646) meant that applications using the flawed software would crash when presented with a maliciously constructed PNG raster…
Bitwarden adds support for passkey login on Windows 11

Mar 5, 2026 12:47 AM

Tags: login, passkey, windows

Bitwarden announced support for logging into Windows 11 devices using passkeys stored in the manager’s vault, enabling phishing-resistant authentication. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/bitwarden-adds-support-for-passkey-login-on-windows-11/
Bitwarden adds support for passkey login on Windows 11

Mar 5, 2026 12:47 AM

Tags: login, passkey, windows

Bitwarden announced support for logging into Windows 11 devices using passkeys stored in the manager’s vault, enabling phishing-resistant authentication. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/bitwarden-adds-support-for-passkey-login-on-windows-11/
Windows 10 KB5075039 update fixes broken Recovery Environment

Mar 4, 2026 10:47 PM

Tags: microsoft, update, windows

Microsoft has released the KB5075039 Windows Recovery Environment update for Windows 10 to fix a long-standing issue that prevented some users from accessing the Recovery environment. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/windows-10-kb5075039-update-fixes-broken-recovery-environment/