Chinese hackers target telcos with new Linux, Windows malware

A Chinese cyber-espionage campaign has been targeting telecommunications providers with newly discovered Linux and Windows ...

How To Mitigate The Microsoft Windows BitLocker YellowKey USB 0-Day

Following the release of a BitLocker zero-day security bypass by a disgruntled hacker, Microsoft has now offered mitigation ...

New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released

A cybersecurity researcher has released a proof-of-concept exploit for a Windows privilege escalation zero-day dubbed ...

Windows 11’s new SecureBoot folder isn’t malware. Here’s what it does

A new SecureBoot folder appeared in Windows 11 after May's update. Here's what it is, what it does, and why you shouldn't ...

Windows 11’s firewall has a blind spot. These tweaks close it

Windows blocks incoming threats but ignores outgoing traffic by default. Fix that with Simplewall, encrypted DNS, stealth ...
SecurityWeek

Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks

Attackers are increasingly abusing Microsoft’s legacy MSHTA utility to silently deliver malware, stealers, and persistent ...
CSO Online

‘Patched’ Windows bug resurfaces 6 years later as working SYSTEM-level exploit

Elevation of privilege flaw in Cloud Filter driver reappears, raising concerns over regression vulnerabilities in Windows.

Experts warn a key Microsoft legacy tool is still being abused to launch malware campaigns

MSHTA is being used for both simple and advanced threats, deploying loaders and infostealers.
Windows Report

MiniPlasma Zero-Day Exploit Allegedly Gives SYSTEM Access on Fully Patched Windows 11

A security researcher has released a proof-of-concept exploit for a Windows privilege escalation zero-day called MiniPlasma, raising fresh concerns about the security of fully patched Windows systems.