Two Windows vulnerabilities, one a 0-day, are under active exploitation

Two Windows vulnerabilities—one a zero-day that has been known to attackers since 2017 and the other a critical flaw that Microsoft initially tried and failed to patch recently—are under active ...

New Atroposia malware comes with a local vulnerability scanner

A new malware-as-a-service (MaaS) platform named Atroposia provides cybercriminals a remote access trojan that combines ...
Redmond Magazine

Microsoft Defender Vulnerability Management Adds 'Authenticated Scan for Windows' Capability

Microsoft this week announced that its Microsoft Defender Vulnerability Management solution can now scan Windows devices that are lacking certain agent support. This capability, called "authenticated ...

CISA urges immediate patching of exploited Windows SMB client vulnerability

Tracked as CVE-2025-33073, the vulnerability affects the Windows Server Message Block client, a core component used for file ...
TechRepublic

Vulnerability Scanning vs Penetration Testing: What’s the Difference?

Vulnerability Scanning vs Penetration Testing: What’s the Difference? Your email has been sent Many IT security terms have proved challenging to understand due to their similarities and contextual ...
American Hospital Association

Microsoft issues security update addressing critical vulnerability impacting Windows server services

Microsoft has released a security update to address a critical remote code execution vulnerability impacting multiple versions of Windows Server Update Services that was not fully eradicated by a ...

Critical WSUS flaw in Windows Server now exploited in attacks

Attackers are now exploiting a critical-severity Windows Server Update Service (WSUS) vulnerability, which already has publicly available proof-of-concept exploit code.