On Tuesday, Microsoft patched two zero-day vulnerabilities that let attackers gain SYSTEM privileges on fully patched Windows ...

A security researcher has released RoguePlanet, a Windows zero-day exploit leading to local privilege escalation to SYSTEM.

Among other things, a critical kernel vulnerability threatens Windows 11. Microsoft is also closing zero-day vulnerabilities ...

Microsoft has confirmed an emergency security update as CISA warns that two new Defender zero-days are being exploited by attackers.

Microsoft condemned researcher Nightmare Eclipse for publicly revealing unpatched vulnerabilities, risking customer safety, and aiding malicious hackers.

While there weren’t any genuine zero-day vulnerabilities to patch in May’s Patch Tuesday update, the fallout since then has been severe. The first attacks on Microsoft Exchange Server occurred as ...

Yesterday, on Patch Tuesday for June, Microsoft released security updates to address 206 vulnerabilities. This is a new ...

Microsoft patched high-severity zero-days disclosed by researcher Nightmare Eclipse after months of public feuding, with ...

A researcher published unpatched bugs in Defender and BitLocker after Microsoft allegedly revoked their account. Microsoft invoked its Digital Crimes Unit.

Microsoft's June Patch Tuesday release is one of the largest in company history, but the bigger concern for enterprise IT teams is the handful of zero-days already known to attackers and researchers.

The back-and-forth over public disclosure policy does have substantial "gray area" and nuance. As Microsoft points out, the ...

Microsoft goes on the offensive after a disgruntled security researcher unleashed a series of zero-days without checking in ...