Microsoft has patched today a huge security hole in Microsoft Office that could be exploited to run malicious code without user interaction on all Windows versions released in the past 17 years.
Microsoft has released security updates for several products as part of the company's November 2017 Patch Tuesday, the company's monthly update train.
A security researcher has discovered a new code injection technique that works on all recent Windows versions and allows miscreants to inject malicious code into other applications undetected.
Microsoft has patched only recent versions Windows against a dangerous hack that could allow attackers to steal Windows NTLM password hashes without any user interaction.
With the release of the Windows 10 Fall Creators Update earlier this week, Microsoft quietly rolled out a gaming anti-cheat engine, similar to Valve's VAC system.
Microsoft has just fixed a nasty bug affecting the DNS client included with Windows 8, Windows 10, Windows Server 2012 and Windows Server 2016.
Earlier today, Microsoft published the October 2017 Patch Tuesday, the company's monthly update train, addressing important security issues, but also some mundane bugfixes.
Project Zero, Google's top security team, says that Microsoft is putting customers at risk by not patching Windows OS versions in the same way and with the same consistency.
Security researchers from CyberArk have discovered a new technique that allows malware to bypass Windows Defender, the standard security software that comes included with all Windows operating systems.
The next major update of the Windows 10 operating system — codenamed the Fall Creators Update (FCU) — will receive new privacy controls, including popup dialogs that warn users about features an app is about to use.
Moments ago, Microsoft published the September 2017 Patch Tuesday, and this month the OS maker fixed 82 security bugs. Among the patches, there is one zero-day vulnerability exploited in the wild and three bugs whose details became public but have yet to be exploited in attacks.
Malware developers can abuse a programming error in the Windows kernel to prevent security software from identifying if, and when, malicious modules have been loaded at runtime.
On October 17, Microsoft will launch the next major version of Windows 10, nicknamed the Fall Creators Update (CFU).
WikiLeaks published today documentation on the CIA Angelfire project, a malware framework developed to infect Windows computers.
Earlier this week, Adobe patched a vulnerability in Flash Player that allows an attacker to use malicious Flash files to leak Windows credentials.
Today, Microsoft unveiled Windows 10 Pro for Workstations, which contains high end features geared towards servers that are running mission critical applications or utilizing high end hardware. These features include ReFS (Resilient file system), persistent memory, faster file sharing, and expanded hardware support.
Microsoft released the August 2017 Patch Tuesday security bulletin, and this month the company fixed 48 security issues in six of its main product categories.
Security researchers have discovered a new backdoor trojan targeting Windows computers. Named CowelSnail, this malware appears to be the work of the same group who weaponized the SambaCry vulnerability to install cryptocurrency miners on Linux servers last month.