Dark Reading

Windows SMB Zero-Day Exploit On The Loose

US-CERT and other organizations Friday warned of a zero-day memory corruption bug in several versions of Microsoft Windows that could allow a remote attacker to cause a vulnerable system to crash and ...
WinBuzzer

Microsoft January 2026 Patch Tuesday Fixes Actively Exploited DWM Zero-day Alongside 111 Security Flaws

Microsoft has patched 112 vulnerabilities in January 2026, including CVE-2026-20805, a Desktop Window Manager zero-day that attackers are actively exploiting.
SiliconANGLE

CISA urges immediate patching of exploited Windows SMB client vulnerability

The U.S. Cybersecurity and Infrastructure Agency has issued a warning relating to an actively targeted Microsoft Windows vulnerability that can be found in unpatched versions of Windows 10, Windows 11 ...
Hosted on MSN

CISA warns high-severity Windows SMB flaw now exploited in attacks, so update now

CVE-2025-33073 sees Windows users face an SMB vulnerability Microsoft issued a fix in June 2025 – make sure you’re up to date Google’s researchers were among those who discovered it Microsoft has ...
Bleeping Computer

New Windows zero-day with public exploit lets you become an admin

A security researcher has publicly disclosed an exploit for a new Windows zero-day local privilege elevation vulnerability that gives admin privileges in Windows 10, Windows 11, and Windows Server.

Microsoft January 2026 Patch Tuesday fixes 3 zero-days, 114 flaws

Today is Microsoft' 2026 Patch Tuesday with security updates for 114 flaws, including one actively exploited and two publicly ...
CRN

Exploit Of Windows 2000 Zero-Day To Hit In June

According to the Cupertino, Calif. company's alert, an exploit for the zero-day bug in Windows 2000's SMB (Server Message Block) protocol has been created by Immunity Security, the makers of the ...