Dark Reading

Microsoft Starts 2026 With a Bang: A Freshly Exploited Zero-Day

Among them is a zero-day vulnerability in Desktop Window Manager (DWM) designated as CVE-2026-20805 (CVSS score: 5.5), which ...
GIGAZINE

Microsoftは北朝鮮・ロシア・中国によるスパイ行為に悪用された8年前 ...

セキュリティ企業・トレンドマイクロのバグ報奨金プログラムプラットフォームであるZero Day Initiative(ZDI)で発見されたWindowsのショートカットファイルにある脆弱(ぜいじゃく)性「ZDI-CAN-25373」が、北朝鮮・イラン・ロシア・中国などと関連するサイバー攻撃 ...

Microsoft January 2026 Patch Tuesday fixes 3 zero-days, 114 flaws

Today is Microsoft' 2026 Patch Tuesday with security updates for 114 flaws, including one actively exploited and two publicly ...
Redmondmag.com

Zero-Day Attack Drives 113-Vulnerability Patch Tuesday Release to Start 2026

Microsoft rang in 2026 with its biggest January Patch Tuesday rollout in four years, shipping fixes for 113 vulnerabilities ...
GIGAZINE

Microsoft hasn't fixed 8-year-old shortcut exploit used by North Korea, Russia, and China ...

Trend Micro has reported that a vulnerability in Windows shortcut files, ZDI-CAN-25373, discovered by Trend Micro's bug bounty program platform Zero Day Initiative (ZDI), is being exploited by cyber ...
Bangkok Post

Microsoft restricts IE mode after hackers exploit zero-day flaw

Microsoft has tightened access to Internet Explorer (IE) mode in its Microsoft Edge browser after discovering that hackers were exploiting a critical zero-day vulnerability to take control of users’ ...
Forbes

Microsoft Worm Attack Warning — Act Rapidly And Change Passwords Now

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Updated December 13 with news of a zero-day exploit that ...
IBTimes UK

Microsoft Issues Unannounced Patch for Zero-Day LNK Vulnerability Used in Real-World Attacks

Microsoft's secret patch fixes 8-Year LNK zero-day exploited by hackers Angel Bena : Pexels Cybersecurity experts warn of a stealthy Microsoft patch addressing a long-exploited Windows LNK zero-day ...