Bleeping Computer

New Windows zero-day exposes NTLM credentials, gets unofficial patch

A new zero-day vulnerability has been discovered that allows attackers to capture NTLM credentials by simply tricking the target into viewing a malicious file in Windows Explorer. The flaw was ...

Microsoft Confirms Windows Flaw Is Being Exploited After Incomplete Patch

Microsoft confirmed a Windows zero-click flaw tied to an incomplete patch is being exploited, putting credentials at risk for unpatched users.
Bleeping Computer

New Windows Themes zero-day gets free, unofficial patches

Free unofficial patches are now available for a new Windows Themes zero-day vulnerability that allows attackers to steal a target's NTLM credentials remotely. NTLM has been extensively exploited in ...
Forbes

Windows Passwords At Risk As New 0-Day Confirmed — Act Now

This new Windows zero-day has no official fix. Oh boy, it’s raining zero days for Windows users right now. Just two weeks on from Microsoft confirming no less than six zero-day attacks impacting users ...
Morning Overview on MSN

Microsoft’s Patch Tuesday update pushes performance improvements to Windows 11 alongside 138 security fixes

Microsoft released its May 2026 Patch Tuesday update on May 12, patching 138 security vulnerabilities across Windows 11 and bundling in a round of performance improvements that the company says should ...
Redmond Magazine

Why Modern Windows Credential Security Requires a New Defender Mindset

Why: "Attacks aren't about stealing credentials anymore. They're about coercing authentication, abusing delegation or misusing already issued tokens." Save $400 when you register for TechMentor & ...
Dark Reading

Russia's APT29 Mimics AWS Domains to Steal Windows Credentials

Russia's premiere advanced persistent threat group has been phishing thousands of targets in militaries, public authorities, and enterprises. "APT29 embodies the 'persistent' part of 'advanced ...