Microsoft has revealed that a recently patched Windows zero-day flaw was used to spread malware and launch ransomware attacks.

One of the vulnerabilities fixed this month was a zero-day, which is a flaw that is exploited or publicly disclosed before an official patch ...

Microsoft announced an increase in bug bounty payouts to $30,000 for AI vulnerabilities found in Dynamics 365 and Power ...

One CVE was used against “a small number of targets.” Windows 10 users needed to wait a little bit for their patches.

The flaw is assessed to be a variant of CVE-2024-43451 (CVSS score: 6.5), which was patched by Microsoft in November 2024 and ...

Today is Microsoft's April 2025 Patch Tuesday, which includes security updates for 134 flaws, including one actively exploited zero-day vulnerability. This Patch Tuesday also fixes eleven ...

If you’ve been putting off updating your Windows laptop or desktop, now is the time to do so as Microsoft has released ... they contain a fix for a zero-day flaw (tracked as CVE-2025-29824 ...

Microsoft has patched a major zero-day vulnerability in Windows with its April Patch Tuesday update. The issue, identified as CVE-2025-29824, allows local attackers to escalate their privileges to ...

Microsoft warns CVE-2025-29824 lets attackers with user access escalate privileges to deploy ransomware via a flaw in Windows CLFS.

There are several critical fixes for CISOs to worry about — and why were Microsoft patches later than expected?