Microsoft introduces a new Defender deployment onboarding experience with improved telemetry, package tracking, and enterprise scalability.

Signed malware backed by a stolen EV certificate deployed legitimate RMM tools to gain persistent access inside enterprise ...

For more than a year, a Russian-speaking threat actor targeted human resource (HR) departments with malware that delivers a new EDR killer named BlackSanta.

Hackers are abusing the legitimate OAuth redirection mechanism to bypass phishing protections in email and browsers to take ...

Unwitting victims are now being tricked into installing malware via Windows Terminal, but some experts say this is old news.

Microsoft has identified a phishing campaign using malformed links to legitimate OAuth services to redirect to malware ...

Storm-2561 uses SEO poisoning to push fake VPN downloads that install signed trojans and steal VPN credentials. Active since 2025, Storm-2561 mimics trusted brands and abuses legitimate services. This ...

A strain of Windows malware is exploiting a deceptively simple trick to bypass antivirus software: it disguises itself as a legitimately signed application, making it nearly invisible to standard ...

Microsoft reveals ClickFix campaign abusing Windows Terminal to deliver Lumma Stealer and steal browser credentials.

Microsoft is rolling out critical Secure Boot certificate updates to Windows 11 systems, with PCWorld reporting that current certificates expire in June 2026. Users must install quality updates and ...

The very devices organizations rely on to enforce security policy are now among the least monitored, and most rapidly exploited, assets in the environment.

Privacy On Windows 11, you can use these 14 privacy tweaks to take control of your device by disabling telemetry, Copilot, Recall, OneDrive, Edge tracking, and cloud ...