Microsoft Reveals Critical Windows Remote Desktop Flaw

An "authorized attacker" could exploit this weakness to gain elevated privileges, potentially reaching SYSTEM-level access.
The Hacker News

From Log4j to IIS, China's Hackers Turn Legacy Bugs into Global Espionage Tools

China-linked hackers exploited multiple CVEs in April 2025 to target global entities with advanced persistence.
The Hacker News

CISA Flags Critical WatchGuard Fireware Flaw Exposing 54,000 Fireboxes to No-Login Attacks

There are currently no details on how the security defect is being exploited and what's the scale of such efforts. According to data from the Shadowserver Foundation, more than 54,300 Firebox ...
Infosecurity Magazine

Microsoft Fixes Windows Kernel Zero Day in November Patch Tuesday

Microsoft has patched a zero-day vulnerability in the Windows Kernel under active exploitation by threat actors ...