Three proof-of-concept exploits are being used in active attacks against Microsoft's built-in security platform; two are ...

Although the team with Microsoft moved swiftly to patch the BlueHammer vulnerability, other exploits still threaten Microsoft ...

RedSun exploit targets Microsoft Defender zero-day, granting SYSTEM access on fully patched Windows systems with no patch ...

A security researcher frustrated with Microsoft has released the BlueHammer Windows zero-day exploit, telling the company, “I ...

A security vulnerability was recently discovered in Microsoft Defender, the first-party Windows 11 antivirus tool used by millions. Attackers can exploit this vulnerability to gain elevated system ...

New PoC shows how Microsoft Defender can be tricked into rewriting malicious files into protected locations, enabling ...

Microsoft has released the final version of security configuration baseline settings for Windows 11, version 22H2, downloadable today using the Microsoft Security Compliance Toolkit. "This release ...

The exploit uses an insecure behavior of Windows Defender and a file API to secure system rights. It is still unpatched.

CVE-2026-32202 actively exploited after April 27 advisory fix, exposing NTLMv2 hashes via zero-click SMB authentication.

Microsoft is promoting Windows 11’s built-in Defender as “usually sufficient” for most users, citing strong independent test ...

Microsoft says the KB5007651 Microsoft Defender Antivirus update triggers Windows Security warnings on Windows 11 systems saying that Local Security Authority (LSA) Protection is off. LSA Protection ...