microsoft 28

• Microsoft Defender for Endpoint Tests Automatic Isolation of Compromised Hosts to Block Lateral Movement May 26, 2026
• Reaper macOS Malware and Two Microsoft Defender Zero-Days Exploited in the Wild May 22, 2026
• CISA Adds 7 Known Exploited Vulnerabilities Including Active Microsoft Defender Flaws May 20, 2026
• Windows Zero-Day Barrage: YellowKey, GreenPlasma, and MiniPlasma Disclosed Post-Patch Tuesday May 19, 2026
• Microsoft Disrupts Fox Tempest Malware-Signing-as-a-Service Platform May 19, 2026
• MiniPlasma Windows Zero-Day Grants SYSTEM Privileges on Fully Patched Systems May 18, 2026
• Pwn2Own Berlin 2026 Day 2: 15 Zero-Days in Windows 11, Exchange, and RHEL Earn $385K May 15, 2026
• Microsoft Edge Will No Longer Load Saved Passwords in Cleartext at Startup May 15, 2026
• Microsoft Exchange CVE-2026-42897 Zero-Day Exploited via Crafted Email May 14, 2026
• Researcher Drops YellowKey BitLocker Bypass and GreenPlasma Windows EoP Zero-Days May 14, 2026
• May 2026 Patch Tuesday: 138 CVEs Including Critical Zero-Click Outlook Flaw CVE-2026-40361 May 13, 2026
• GhostLock PoC: Legitimate Windows File API Abused to Block Local and SMB File Access May 11, 2026
• CloudZ RAT Abuses Windows Phone Link to Steal Credentials and Bypass 2FA May 6, 2026
• April Windows 11 Update KB5083769 Breaks Third-Party Backup Software on 24H2 and 25H2 Apr 30, 2026
• CISA Adds Actively Exploited ConnectWise ScreenConnect and Windows Flaws to KEV Apr 29, 2026
• Microsoft Patches Entra ID AI Agent Role That Enabled Service Principal Takeover Apr 27, 2026
• Microsoft VibeVoice: MIT-Licensed Speech-to-Text Model with Built-In Speaker Diarization Apr 27, 2026
• Incomplete Windows Patch Exposes Systems to Zero-Click APT28 Attack Vector Apr 27, 2026
• OpenAI and Microsoft Restructure Partnership: AGI Clause Dropped, AWS Sales Unlocked Apr 26, 2026
• Microsoft Rolls Out Entra Passkeys on Windows for Phishing-Resistant Auth in Late April Apr 24, 2026
• Microsoft Defender Zero-Day Exploited to Dump NTLM Hashes and Gain SYSTEM Privileges Apr 23, 2026
• Microsoft Issues Emergency Out-of-Band Patches for Critical ASP.NET Core Privilege Escalation Apr 22, 2026
• Over 1,300 SharePoint Servers Still Exposed to Actively Exploited Spoofing Zero-Day Apr 21, 2026
• Windows Zero-Days Leaked, Now Actively Exploited for SYSTEM Privileges Apr 16, 2026
• April 2026 Patch Tuesday: SharePoint Zero-Day Among 167 CVEs Fixed Apr 14, 2026
• Microsoft Testing OpenClaw-Style Autonomous Agents Inside Microsoft 365 Copilot Apr 13, 2026
• VENOM Phishing-as-a-Service Platform Targets C-Suite Executives' Microsoft Credentials Apr 9, 2026
• Microsoft Suspends Developer Accounts for High-Profile Open Source Projects Apr 8, 2026