Hackers are abusing unpatched Windows security flaws to hack into organizations

A security researcher published details of three security vulnerabilities in Windows Defender, and the code used to exploit ...
Windows Report

RedSun Exploit Hits Microsoft Defender Zero-Day, Grants SYSTEM Access

RedSun exploit targets Microsoft Defender zero-day, granting SYSTEM access on fully patched Windows systems with no patch available.

Is friendly fraud the payments industry's problem to solve or its problem to admit?

Here is the uncomfortable truth about friendly fraud: we created it. Not consumers. Not fraudsters. Us. The payments industry ...
CSO Online

Caught, Quarantined, Re-installed: RedSun turns Microsoft Defender on itself

New PoC shows how Microsoft Defender can be tricked into rewriting malicious files into protected locations, enabling ...

Recently leaked Windows zero-days now exploited in attacks

Threat actors are exploiting three recently disclosed Windows security vulnerabilities in attacks aimed at gaining SYSTEM or ...

McGraw-Hill Confirms Data Exposure, Hackers Claim 45M Salesforce Records Leaked

McGraw-Hill confirms a data exposure tied to a Salesforce misconfiguration as hackers claim 45M records, raising concerns ...
CSO Online

RCE by design: MCP architectural choice haunts AI agent ecosystem

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...

New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges

A researcher known as "Chaotic Eclipse" has published a proof-of-concept exploit for a second Microsoft Defender zero-day, ...
Microsoft

Dissecting Sapphire Sleet’s macOS intrusion from lure to compromise

The Microsoft Defender Security Research Team uncovered a sophisticated macOS intrusion campaign attributed to the North ...

Hack Alert Issued Over Security Weakness in Software Used by Pakistani Firms

The government has issued an advisory regarding a critical vulnerability in Fortinet’s FortiClient EMS, which is affecting ...

If You Have an Android Phone, It Could Have an Undeletable Virus That Hacks Your WhatsApp

Unlike typical Android threats, NoVoice does not rely on visible indicators. It profiles device details, including hardware ...