A security researcher frustrated with Microsoft has released the BlueHammer Windows zero-day exploit, telling the company, “I'm not explaining how this works.” ...

Microsoft is simultaneously advancing its Windows K2 quality initiative, confronting a new security exploit targeting its Phone Link feature, and redefining Bing's search index for AI-generated ...

Microsoft confirmed a Windows zero-click flaw tied to an incomplete patch is being exploited, putting credentials at risk for ...

CVE-2026-32202 actively exploited after April 27 advisory fix, exposing NTLMv2 hashes via zero-click SMB authentication.

A researcher discovered five different exploit paths that stem from an architectural weakness in Windows' Remote Procedure ...

Although the team with Microsoft moved swiftly to patch the BlueHammer vulnerability, other exploits still threaten Microsoft ...

Researchers have discovered a new way hackers could use to exploit Windows devices. They have found a vulnerability in your PC’s operating system that could let threat actors downgrade it to an older ...

Microsoft has released out-of-band (OOB) security updates to patch a critical-severity Windows Server Update Service (WSUS) vulnerability with publicly available proof-of-concept exploit code. WSUS is ...

Hackers aren’t just nerds rapidly typing away in dimly lit rooms, as seen in the movies. More and more threats are coming from what are known as “state-level hackers,” who are teams of people — either ...

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now Unpatched systems are a ticking time bomb.

TL;DR: WinRAR has a critical security vulnerability (CVE-2025-6218) allowing remote code execution via directory traversal in Windows versions. This exploit risks sensitive data and system integrity.