The Hacker News

Microsoft Patches CVE-2026-26119 Privilege Escalation in Windows Admin Center

Microsoft fixes CVE-2026-26119, an 8.8 CVSS privilege escalation bug in Windows Admin Center that could allow network-based user rights takeover.
The Hacker News

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

Microsoft details a new ClickFix variant abusing DNS nslookup commands to stage malware, enabling stealthy payload delivery and RAT deployment.
SecurityWeek

Microsoft Warns of ClickFix Attack Abusing DNS Lookups

Microsoft has warned users that threat actors are leveraging a new variant of the ClickFix technique to deliver malware.

Microsoft starts with previews for .NET 11.0

Two months after .NET 10.0, Microsoft starts preview series for version 11, primarily with innovations in the web frontend ...

Microsoft to roll out a ‘consent first’ model to protect Windows

As AI agents and autonomous apps multiply, Microsoft is resetting Windows’ default trust model, requiring user consent and ...

‘Dead’ Outlook add-in hijacked to phish 4,000 Microsoft Office Store users

A hacker noticed the change in its status and hijacked the dead add-in and its 4.71-star rating to conduct a phishing campaign that the company which uncovered the attack, plug-in security company Koi ...