Tag

#Windows

15 stories taggedWindows.

Full-frame photoreal editorial shot of a dark server room with a single rack unit pulled forward, its indicator lights glowing red instead of green, faint smoke
Threat Intelligence

Microsoft Pulls Apart 'GigaWiper', a Windows Backdoor That's Really Three Old Wreckers in a Trench Coat

The malware lets its operator pick how to trash a machine: wipe the disk, kill the Windows drive, or fake a ransomware attack with a key that's thrown away.

3 min
Full-frame edge-to-edge photoreal editorial image of a dimly lit server room with rows of blue-lit racks, one open rack showing a laptop displaying an abstract
AI Security

Microsoft says AI is finding so many Windows bugs, expect bigger Patch Tuesdays

The company is using multiple AI models to hunt vulnerabilities in Windows code, and warns customers will see more fixes each month as a result.

4 min
A photoreal editorial shot of a dimly lit server room aisle, one rack door left slightly ajar with a single amber warning light glowing inside, cables neatly bu
Threat Intelligence

The Boring Breaches: How Small Config Mistakes Keep Owning Big Companies

This week's roundup of incidents has a common thread: not clever attacks, just loose settings, reused names, and untouched defaults doing enormous damage.

3 min
Photoreal news-editorial photograph, 16:9 framing, full-frame edge-to-edge composition
Ransomware

A Microsoft-Approved Driver Is Helping 'GodDamn' Ransomware Gut US Security Tools

A rebranded criminal gang called Hyadina is using a signed Windows driver to kill antivirus software before locking victims' files. The driver carries a legitimate Microsoft stamp, and nobody knows quite how that happened.

3 min
Full-frame photoreal editorial image of a close-up Windows laptop screen showing a generic blue security shield icon glowing, with faint reflection on a dark de
Vulnerabilities

Microsoft Patches 'RoguePlanet' Defender Flaw a Month After Public Disclosure

The privilege escalation bug in the Malware Protection Engine sat exposed for weeks before Redmond shipped a fix.

3 min
A computer screen displaying a fake error message with a prompt to paste a command, in an office environment
Threat Intelligence

ClickFix: Emerging Favorite for Cybercriminals in Malware Delivery

New research highlights how ClickFix, a social engineering tactic, is dominating the malware delivery landscape across various systems.

2 min
Threat Intelligence

ClickFix Grows a Back Office: API-Served Payloads and a New AMSI Bypass

Researchers pulled roughly 3,000 live payloads from ClickFix infrastructure and found a polymorphic delivery pipeline built to defeat Windows script scanning.

2 min
Threat Intelligence

Windows Clipper Worm Phones Home Over Tor, Swaps Crypto Wallets via ActiveX

Microsoft says the campaign, active since February, uses USB-borne LNK files and Windows Script Host to drop a bundled Tor proxy that talks to a .onion C2.

2 min
Vulnerabilities

GreatXML's BitLocker Bypass Claim Falls Short — For Now

A pseudonymous researcher dropped an alleged WinRE-based BitLocker exploit days after Patch Tuesday. A respected vulnerability analyst couldn't replicate it. The researcher is already hunting a fix.

3 min
Vulnerabilities

GreatXML Bypasses BitLocker Through a Trusted Recovery Path

A researcher's four-hour weekend project shows how Windows' own offline scan plumbing can sidestep full-disk encryption.

3 min
Vulnerabilities

RoguePlanet Zero-Day Drops as Nightmare Eclipse–Microsoft Feud Reaches New Low

A race-condition bug in Microsoft Defender can yield a SYSTEM shell on fully patched Windows 11 and 10. No patch exists. The researcher dropped it the day after June Patch Tuesday.

3 min
Vulnerabilities

RoguePlanet PoC Drops: Another Defender Race Condition, Another Path to SYSTEM

An anonymous researcher publishing as Chaotic Eclipse dropped a proof-of-concept against Microsoft Defender that wins SYSTEM on fully patched Windows — when the race goes their way.

3 min
Vulnerabilities

Second Windows URI Handler Bug Leaks NTLMv2 Hashes — Still Unpatched

Researchers flag a search: URI handler flaw that mirrors the recently patched ms-screensketch issue. Microsoft hasn't shipped a fix.

2 min
Vulnerabilities

Notepad++ Flaws Allow Command Execution Via XML Files

Recent vulnerabilities in Notepad++ enable arbitrary code execution on Windows through XML manipulation.

2 min
Vulnerabilities

Two Defender flaws under active exploitation, Microsoft confirms

A SYSTEM-level link-following bug and a denial-of-service issue in Microsoft Defender are both being abused in the wild.

2 min
© 2026 Threat Vectr