Microsoft News Articles
Recent news articles refferecing the vendors vulnerabilities.
Week in review: High-severity LPE vulnerability in the Linux kernel, cPanel 0-day exploited for months - Help Net Security
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: The AI criminal mastermind is already hiring on gig
4 days ago
SwapupdateCVE-2026-32202Microsoft Confirms Active Exploitation of Windows Shell CVE-2026-32202
Ravie LakshmananApr 28, 2026Vulnerability / Threat Intelligence
5 days ago
Computer WorldCVE-2026-32202Windows shell spoofing vulnerability puts sensitive data at risk
A flaw remaining after the February patch of a zero day is already being exploited, and slow patch cycles in both government and enterprises are giving attackers the upper hand.
1 week ago
ItnewsCVE-2026-32202Incomplete fix for Fancy Bear exploit opens zero-click hole in Windows
Microsoft's partial patching in February 2026 of a zero-day vulnerability abused by Russian state-sponsored threat group Fancy Bear created a new flaw that is now being exploited without user interaction,...
1 week ago
/pcq/media/member_avatars/pcquest (1).png){kind=small}
PcquestCVE-2026-32202Microsoft warns Windows Shell flaw is being exploited to expose credentials
Microsoft’s Windows Shell flaw CVE-2026-32202 is under attack. See how one shortcut file can expose NTLM credentials and raise enterprise risk before it stings.
1 week ago
NotebookcheckCVE-2026-32202Windows zero-day CVE-2026-32202 confirmed as exploited
CISA has ordered federal agencies to patch CVE-2026-32202, a zero-click Windows Shell flaw left open by an incomplete February fix now confirmed as exploited.
1 week ago
CISA orders feds to patch Windows flaw exploited as zero-day
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to secure their Windows systems against a vulnerability exploited in zero-day attacks.
1 week ago
Help Net SecurityCVE-2026-32202CISA, Microsoft warn of active exploitation of Windows Shell vulnerability (CVE-2026-32202) - Help Net Security
Attackers are exploiting CVE-2026-32202, a Windows vulnerability that causes victims' systems to authenticate the attacker's server.
1 week ago
The Hacker NewsCVE-2026-32202Microsoft Confirms Active Exploitation of Windows Shell CVE-2026-32202
CVE-2026-32202 actively exploited after April 27 advisory fix, exposing NTLMv2 hashes via zero-click SMB authentication.
1 week ago
SwapupdateCVE-2026-40372Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug
Ravie LakshmananApr 22, 2026Vulnerability / Cryptography
2 weeks ago
CISA orders feds to patch BlueHammer flaw exploited as zero-day
CISA has ordered U.S. federal agencies to patch a Microsoft Defender privilege escalation flaw (dubbed BlueHammer) that has been exploited in zero-day attacks.
2 weeks ago
It Security NewsCVE-2026-33825U.S. CISA adds a flaw in Microsoft Defender to its Known Exploited Vulnerabilities catalog - IT Security News
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in Microsoft Defender to its Known Exploited Vulnerabilities catalog The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a flaw in Microsoft Defender, tracked as CVE-2026-33825 (CVSS score of 7.8), to…Rea...
2 weeks ago
It Security NewsCVE-2026-33825CISA Adds One Known Exploited Vulnerability to Catalog - IT Security News
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-33825 Microsoft Defender Insufficient Granularity of Access Control Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber…R...
2 weeks ago
Esecurity PlanetCVE-2026-40372CVE-2026-40372: Microsoft Patches ASP.NET Core Privilege Escalation Vulnerability | eSecurity Planet
Microsoft patched an ASP.NET Core flaw (CVE-2026-40372) that could let attackers forge tokens and gain SYSTEM-level access.
2 weeks ago
It Security NewsCVE-2026-322011,370+ Microsoft SharePoint Servers Vulnerable to Spoofing Attacks Exposed Online - IT Security News
A critical spoofing vulnerability in Microsoft SharePoint Server, tracked as CVE-2026-32201, remains unpatched on over 1,370 internet-facing IP addresses worldwide, according to fresh scanning data from the Shadowserver Foundation, even as the flaw sits on CISA’s Known Exploited Vulnerabilities (KEV...
2 weeks ago
The Hacker NewsCVE-2026-40372Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug
CVE-2026-40372 scores 9.1 due to cryptographic flaw in ASP.NET Core 10.0.0–10.0.6, risking SYSTEM access.
2 weeks ago
Microsoft releases emergency patches for critical ASP.NET flaw
Microsoft has released out-of-band (OOB) security updates to patch a critical ASP.NET Core privilege escalation vulnerability.
2 weeks ago
OnmsftCVE-2026-40372Microsoft Ships Emergency .NET Patch After Severe Security Risk Discovered
Microsoft released .NET 10.0.7 to fix critical CVE-2026-40372 vulnerability that could allow SYSTEM-level access and data compromise.
2 weeks ago
Over 1,300 Microsoft SharePoint servers vulnerable to spoofing attacks
Over 1,300 Microsoft SharePoint servers exposed online remain unpatched against a spoofing vulnerability that was exploited as a zero-day and is still being abused in ongoing attacks.
2 weeks ago
Exploits Turn Windows Defender into Attacker Tool
Three proof-of-concept exploits are being used in active attacks against Microsoft's built-in security platform; two are unpatched.
2 weeks ago
The Hacker NewsCVE-2026-21520Google Patches Antigravity IDE Flaw Enabling Prompt Injection Code Execution
Antigravity Strict Mode bypass disclosed Jan 7, 2026, patched Feb 28, enables arbitrary code execution via fd -X flag.
2 weeks ago
News9liveCVE-2026-33829Windows Snipping Tool flaw exposed: PoC exploit leaks NTLM hashes silently
A critical Windows Snipping Tool vulnerability (CVE-2026-33829) allows attackers to steal Net-NTLM hashes through malicious links. The flaw exploits improper handling of deep link URIs, triggering silent SMB authentication to attacker-controlled servers.
2 weeks ago