Earlier today, Microsoft published the October 2017 Patch Tuesday, the company's monthly update train, addressing important security issues, but also some mundane bugfixes.
Project Zero, Google's top security team, says that Microsoft is putting customers at risk by not patching Windows OS versions in the same way and with the same consistency.
Security researchers from CyberArk have discovered a new technique that allows malware to bypass Windows Defender, the standard security software that comes included with all Windows operating systems.
The next major update of the Windows 10 operating system — codenamed the Fall Creators Update (FCU) — will receive new privacy controls, including popup dialogs that warn users about features an app is about to use.
Moments ago, Microsoft published the September 2017 Patch Tuesday, and this month the OS maker fixed 82 security bugs. Among the patches, there is one zero-day vulnerability exploited in the wild and three bugs whose details became public but have yet to be exploited in attacks.
Malware developers can abuse a programming error in the Windows kernel to prevent security software from identifying if, and when, malicious modules have been loaded at runtime.
On October 17, Microsoft will launch the next major version of Windows 10, nicknamed the Fall Creators Update (CFU).
WikiLeaks published today documentation on the CIA Angelfire project, a malware framework developed to infect Windows computers.
Earlier this week, Adobe patched a vulnerability in Flash Player that allows an attacker to use malicious Flash files to leak Windows credentials.
Today, Microsoft unveiled Windows 10 Pro for Workstations, which contains high end features geared towards servers that are running mission critical applications or utilizing high end hardware. These features include ReFS (Resilient file system), persistent memory, faster file sharing, and expanded hardware support.
Microsoft released the August 2017 Patch Tuesday security bulletin, and this month the company fixed 48 security issues in six of its main product categories.
Security researchers have discovered a new backdoor trojan targeting Windows computers. Named CowelSnail, this malware appears to be the work of the same group who weaponized the SambaCry vulnerability to install cryptocurrency miners on Linux servers last month.
Microsoft plans to remove the classic Windows Paint app from Windows 10 this fall, as part of a large chunk of features the company announced it would deprecate or remove with the release of the Windows 10 Fall Creators Update, set to be launched somewhere in October or November.
Mozilla engineers have decided that starting with Firefox 56 they will silently and forcibly auto-upgrade some users of 32-bit Firefox to 64-bit versions.
Thai security researcher Worawit Wang has put together an exploit based on ETERNALSYNERGY that can also target newer versions of the Windows operating system.
Two implementations of the Kerberos authentication protocol received patches this week against a vulnerability that allowed a threat actor to bypass authentication procedures.
Microsoft added a password recovery option to the Windows 10 locksreen for users that use a Microsoft account to log into their computer.
Microsoft has worked on adding security protections against two forms of code injection techniques known as process hollowing and atom bombing.