The critical zero-day “Scripting Engine Memory Corruption” vulnerability (CVE-2018-8653) is being actively exploited on Windows systems by hackers.
Attackers are using fake Office 365 non-delivery messages in new phishing attacks designed to steal your credentials.
Microsoft issued the December 2018 Security Updates that include 39 unique vulnerability fixes, 9 of them rated critical.
Microsoft issued the November 2018 Security Updates that include 62 unique vulnerability fixes, 12 of them rated critical.
Microsoft issued a security update for its Yammer Desktop application that addresses a remote code execution vulnerability (CVE-2018-8569).
A proof-of-concept (POC) has been released for an exploit of a recently patched Microsoft Edge vulnerability.
Microsoft issued the October 2018 Security Updates that include nearly 50 unique vulnerability fixes, 12 of them rated critical.
Microsoft issued the September 2018 Security Updates that include over 60 unique vulnerability fixes, 17 of them rated critical to include a zero day being actively exploited.
A local privilege escalation vulnerability in the Advanced Local Procedure Call (ALPC) interface of Windows task scheduler was discovered.
Microsoft has released new Intel microcode updates (KB4346084) for Windows 10 version 1803 (Windows 10 April 2018 Update) and Windows Server Version 1803 (Server Core).