Tag: windows

Jetzt Updates einspielen: Windows-Nutzer werden attackiert

Jan 14, 2026 7:11 PM

Tags: update, windows

Mindestens eine zum Januar-Patchday geschlossene Windows-Lücke wird schon aktiv ausgenutzt. Nutzer sollten ihre Systeme zügig aktualisieren. First seen on golem.de Jump to article: www.golem.de/news/jetzt-updates-einspielen-windows-nutzer-werden-attackiert-2601-204160.html
January 2026 Microsoft Patch Tuesday: Actively exploited zero day needs attention

Jan 14, 2026 7:11 PM

Tags: access, attack, authentication, browser, cloud, cve, cvss, cyber, exploit, flaw, injection, ivanti, kev, malicious, microsoft, monitoring, oracle, remote-code-execution, risk, sap, service, sql, startup, threat, update, vulnerability, windows, zero-day

More priorities: Executives should also prioritize rapid patching and risk reduction efforts this month around the Windows Local Security Authority Subsystem Service Remote Code Execution, Windows Graphics Component Elevation of Privilege, and Windows Virtualization Based Security Enclave Elevation of Privilege flaws, Bicer said, as these vulnerabilities directly enable full system or trust boundary compromise.Strategic focus…
Windows info-disclosure 0-day bug gets a fix as CISA sounds alarm

Jan 14, 2026 7:11 PM

Tags: cisa, update, windows, zero-day

First Patch Tuesday of 2026 goes big First seen on theregister.com Jump to article: www.theregister.com/2026/01/14/patch_tuesday_january_2026/
Developer writes script to throw AI out of Windows

Jan 14, 2026 7:11 PM

Tags: ai, windows

Satya Nadella’s call to accept and embrace desktop brainboxes faces skepticism First seen on theregister.com Jump to article: www.theregister.com/2026/01/13/script_removes_ai_from_windows/
Microsoft January 2026 Patch Tuesday: 115 Vulnerabilities Fixed

Jan 14, 2026 7:11 PM

Tags: exploit, microsoft, office, update, vulnerability, windows

Microsoft kicks off 2026 with 115 security updates, including a fix for an actively exploited zero-day. Protect your Windows and Office systems today. First seen on hackread.com Jump to article: hackread.com/microsoft-january-2026-patch-tuesday-vulnerabilities/
U.S. CISA adds a flaw in Microsoft Windows to its Known Exploited Vulnerabilities catalog

Jan 14, 2026 7:11 PM

Tags: cisa, cve, cybersecurity, exploit, flaw, infrastructure, kev, microsoft, update, vulnerability, windows

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw impacting Microsoft Windows to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a Microsoft Windows vulnerability, tracked as CVE-2026-20805 (CVSS Score of 8.7), to its Known Exploited Vulnerabilities (KEV) catalog. This week, Microsoft Patch Tuesday security updates for January 2026 release…
Microsoft Patch Tuesday security updates for January 2026 fixed actively exploited zero-day

Jan 14, 2026 7:11 PM

Tags: cve, exploit, flaw, microsoft, office, sql, update, vulnerability, windows, zero-day

Microsoft Patch Tuesday addressed 112 security flaws across Windows, Office, Azure, Edge, and more, including eight critical vulnerabilities, kicking off the new year with a major patch update. Microsoft Patch Tuesday security updates for January 2026 release 112 CVEs affecting Windows, Office, Azure, Edge, SharePoint, SQL Server, SMB, and Windows management services. Including third-party Chromium…
Wine 11 brings major architectural work, synchronization changes, 600+ bug fixes

Jan 14, 2026 1:01 AM

Tags: windows

Wine, originally short for “Wine Is Not an Emulator,” is a compatibility layer that allows Windows applications to run natively on POSIX-compliant operating systems, including … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/14/wine-11-released/
Microsoft’s January 2026 Patch Tuesday Addresses 113 CVEs (CVE-2026-20805)

Jan 14, 2026 12:04 AM

Tags: access, attack, best-practice, cloud, cve, cyber, exploit, firmware, flaw, Internet, malicious, microsoft, mitre, ntlm, office, rce, remote-code-execution, service, social-engineering, sql, technology, update, vulnerability, windows, zero-day

8Critical 105Important 0Moderate 0Low Microsoft addresses 113 CVEs in the first Patch Tuesday of 2026, with two zero-days, including one that was exploited in the wild. Microsoft patched 113 CVEs in its January 2026 Patch Tuesday release, with eight rated critical and 105 rated as important. Our counts omitted one CVE that was assigned by…
Microsoft’s January 2026 Patch Tuesday Addresses 113 CVEs (CVE-2026-20805)

Jan 14, 2026 12:04 AM

Tags: access, attack, best-practice, cloud, cve, cyber, exploit, firmware, flaw, Internet, malicious, microsoft, mitre, ntlm, office, rce, remote-code-execution, service, social-engineering, sql, technology, update, vulnerability, windows, zero-day

8Critical 105Important 0Moderate 0Low Microsoft addresses 113 CVEs in the first Patch Tuesday of 2026, with two zero-days, including one that was exploited in the wild. Microsoft patched 113 CVEs in its January 2026 Patch Tuesday release, with eight rated critical and 105 rated as important. Our counts omitted one CVE that was assigned by…
New Windows updates replace expiring Secure Boot certificates

Jan 13, 2026 10:02 PM

Tags: microsoft, update, windows

Microsoft has started rolling out new Secure Boot certificates that will automatically install on eligible Windows 11 24H2 and 25H2 systems. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/microsoft-rolls-out-new-secure-boot-certificates-for-windows-devices/
New Windows updates replace expiring Secure Boot certificates

Jan 13, 2026 10:02 PM

Tags: microsoft, update, windows

Microsoft has started rolling out new Secure Boot certificates that will automatically install on eligible Windows 11 24H2 and 25H2 systems. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/microsoft-rolls-out-new-secure-boot-certificates-for-windows-devices/
Microsoft releases Windows 10 KB5073724 extended security update

Jan 13, 2026 9:02 PM

Tags: microsoft, update, windows, zero-day

Microsoft has released the KB5073724 extended security update to fix the Patch Tuesday security updates, including 3 zero-days and a fix for expiring Secure Boot certificates. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-kb5073724-extended-security-update/
Windows 11 KB5074109 & KB5073455 cumulative updates released

Jan 13, 2026 9:02 PM

Tags: microsoft, update, vulnerability, windows

Microsoft has released Windows 11 KB5074109 and KB5073455 cumulative updates for versions 25H2/24H2 and 23H2 to fix security vulnerabilities, bugs, and add new features. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/windows-11-kb5074109-and-kb5073455-cumulative-updates-released/
PowerShell-Driven Multi-Stage Windows Malware Using Text Payloads

Jan 13, 2026 8:02 PM

Tags: cyber, detection, infection, malicious, malware, powershell, rat, windows

Security researchers have identified a sophisticated multi-stage malware campaign dubbed SHADOW#REACTOR that chains together obfuscated Visual Basic Script (VBS) execution, resilient PowerShell stagers, text-only payload delivery mechanisms, and .NET Reactorprotected in-memory loaders to deploy Remcos RAT while evading detection and analysis reliably. Initial infection begins when users execute a malicious VBS script, typically delivered through…
SHADOW#REACTOR Campaign Uses Text-Only Staging to Deploy Remcos RAT

Jan 13, 2026 6:02 PM

Tags: infection, malware, rat, windows

SHADOW#REACTOR is a multi-stage Windows malware campaign that stealthily deploys the Remcos RAT using complex infection techniques First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/shadowreactor-text-staging-remcos/
Kostenloses Monitoring-Tool für Windows-Infrastrukturen – Mit WhatsUp Gold auch das Active Directory überwachen

Jan 13, 2026 1:01 PM

Tags: monitoring, tool, windows

First seen on security-insider.de Jump to article: www.security-insider.de/mit-whatsup-gold-auch-das-active-directory-ueberwachen-a-505f770bdbd294cdcba537ccf273e1b9/
New Malware Campaign Delivers Remcos RAT Through Multi-Stage Windows Attack

Jan 13, 2026 12:01 PM

Tags: attack, cybersecurity, infection, malware, rat, tool, windows

Cybersecurity researchers have disclosed details of a new campaign dubbed SHADOW#REACTOR that employs an evasive multi-stage attack chain to deliver a commercially available remote administration tool called Remcos RAT and establish persistent, covert remote access.”The infection chain follows a tightly orchestrated execution path: an obfuscated VBS launcher executed via wscript.exe invokes a First seen on…
Hackers Exploit Browserthe-Browser Trick to Hijack Facebook Accounts

Jan 13, 2026 9:01 AM

Tags: authentication, credentials, cyber, exploit, hacker, login, phishing, social-engineering, theft, windows

Facebook’s massive 3 billion active users make it an attractive target for sophisticated phishing campaigns. As attackers grow more inventive, a hazardous technique is gaining traction: the >>Browser-in-the-Browser<< (BitB) attack. This advanced social engineering method creates custom-built fake login pop-ups that are nearly indistinguishable from legitimate authentication windows, enabling credential theft on an unprecedented scale.…
Support-Ende Windows 10 & Co – Diese Produkte hat Microsoft 2025 ausgemustert

Jan 12, 2026 2:02 PM

Tags: microsoft, windows

First seen on security-insider.de Jump to article: www.security-insider.de/microsoft-support-ende-ausmusterung-2025-windows-10-a-00435335eb106f9183afe292c693fbf8/
Windows 11: IT-Admins dürfen Copilot wohl bald per Richtlinie entfernen

Jan 12, 2026 12:02 PM

Tags: microsoft, windows

Microsoft testet eine neue Richtlinie, mit der IT-Admins Copilot von verwalteten Geräten entfernen können. Doch es gibt Einschränkungen. First seen on golem.de Jump to article: www.golem.de/news/windows-11-insider-preview-admins-koennen-copilot-app-per-richtlinie-entfernen-2601-204058.html
Windows 11 Insider Preview: Admins können Copilot-App per Richtlinie entfernen

Jan 12, 2026 11:01 AM

Tags: microsoft, windows

Microsoft testet eine neue Richtlinie, mit der IT-Admins Copilot von verwalteten Geräten entfernen können. Doch es gibt Einschränkungen. First seen on golem.de Jump to article: www.golem.de/news/windows-11-insider-preview-admins-koennen-copilot-app-per-richtlinie-entfernen-2601-204058.html
Trotz Kritik und möglicher Sicherheitsrisiken – Microsoft treibt agentenbasiertes Windows 11 weiter voran

Jan 12, 2026 8:01 AM

Tags: microsoft, windows

First seen on security-insider.de Jump to article: www.security-insider.de/windows-11-ki-entfernen-skript-a-bb4cc6faef3011bbdadc0d99c8dced77/
EDRStartupHinder: Blocks Antivirus EDR at Windows 11 25H2 Startup (Defender Included)

Jan 12, 2026 7:01 AM

Tags: antivirus, api, cyber, cybersecurity, detection, edr, endpoint, exploit, microsoft, software, startup, tool, windows

A cybersecurity researcher has unveiled EDRStartupHinder, a proof-of-concept tool that prevents antivirus and endpoint detection and response (EDR) solutions from launching during Windows startup, including Microsoft Defender on Windows 11 25H2. The technique exploits Windows Bindlink API functionality through the bindflt.sys driver to interfere with security software initialization. The tool builds on previous research into Bindlink…
Microsoft Windows Media Player stops serving up CD album info

Jan 10, 2026 1:01 PM

Tags: microsoft, windows

No naming that tune and no album covers First seen on theregister.com Jump to article: www.theregister.com/2026/01/09/microsoft_windows_media_player_forgets/
xRAT Malware Targets Windows Users via Fake Adult Game

Jan 9, 2026 7:02 PM

Tags: cyber, intelligence, malicious, malware, service, threat, windows

AhnLab Security Intelligence Center (ASEC) has uncovered a dangerous distribution campaign targeting Windows users through Korean web hard services. Threat actors are leveraging xRAT (QuasarRAT) malware, disguising it as legitimate adult game content to deceive unsuspecting users into downloading and executing malicious files. Korean webhard services have become a prime vector for malware distribution, with…
Trend Micro Apex Central Flaw Enable Remote Code Execution Attacks

Jan 9, 2026 7:02 PM

Tags: attack, cyber, flaw, remote-code-execution, update, vulnerability, windows

Trend Micro has issued a critical security update for Apex Central to address multiple remotely exploitable vulnerabilities, including a bug that allows unauthenticated attackers to execute code with SYSTEM-level privileges. Organizations running vulnerable builds are urged to patchimmediatelyto avoid both remote code execution anddenial-of-servicerisks.”‹ Critical flaws in Apex Central The update targets Apex Central for Windows and…
CrowdStrike to acquire SGNL for $740M, expanding real-time identity security

Jan 9, 2026 2:01 PM

Tags: access, authentication, ciso, control, crowdstrike, cybersecurity, data, detection, endpoint, google, iam, identity, network, okta, risk, software, update, windows

Market consolidation accelerates: The $740 million price reflects broader consolidation as cybersecurity vendors race to expand identity capabilities. The deal marks the latest in a wave of identity security acquisitions as platform vendors expand beyond core products. Liu compared the move to Palo Alto Networks’ acquisition of CyberArk in 2025, noting both vendors are racing…
CrowdStrike to acquire SGNL for $740M, expanding real-time identity security

Jan 9, 2026 2:01 PM

Tags: access, authentication, ciso, control, crowdstrike, cybersecurity, data, detection, endpoint, google, iam, identity, network, okta, risk, software, update, windows

Market consolidation accelerates: The $740 million price reflects broader consolidation as cybersecurity vendors race to expand identity capabilities. The deal marks the latest in a wave of identity security acquisitions as platform vendors expand beyond core products. Liu compared the move to Palo Alto Networks’ acquisition of CyberArk in 2025, noting both vendors are racing…
CISA Retires 10 Emergency Cybersecurity Directives Issued Between 2019 and 2024

Jan 9, 2026 12:01 PM

Tags: cisa, cybersecurity, dns, infrastructure, update, vulnerability, windows

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday said it’s retiring 10 emergency directives (Eds) that were issued between 2019 and 2024.The list of the directives now considered closed is as follows -ED 19-01: Mitigate DNS Infrastructure TamperingED 20-02: Mitigate Windows Vulnerabilities from January 2020 Patch TuesdayED 20-03: Mitigate Windows DNS Server First…