The PhantomRPC Windows vulnerability allows attackers to elevate their privileges to System by using a fake RPC server.

CVE-2026-32202 actively exploited after April 27 advisory fix, exposing NTLMv2 hashes via zero-click SMB authentication.

Microsoft’s April 2026 security update fixes 165 vulnerabilities across Windows, Office, and other products, including one actively exploited SharePoint flaw. The update also introduces a Windows 11 ...

Nearly every major product family needs immediate patching, from Windows to Office to Microsoft Edge, SQL Server, and even ...

The big picture: Microsoft has spent the past few years rushing to answer the potential threat that Valve's Steam Deck and SteamOS present to Windows. At this year's Game Developers Conference, ...

Bitwarden Brings Passkey Logins to Windows 11, Expanding Passwordless Sign-Ins Your email has been sent Password manager Bitwarden has introduced support for passkey-based sign-ins on Windows 11, ...

Many organizations have complex environments with a diverse set of hardware and software configurations. Those utilizing Microsoft's stack of technology typically also receive guidance from the ...

Microsoft has strengthened its Windows Server security posture once again, rolling out a refreshed baseline package while expanding protections across core services. According to a report from Neowin, ...

PCWorld explains how Safe Mode serves as a critical troubleshooting tool when Windows fails to boot by loading only essential system components. Safe Mode enables users to identify problematic drivers ...

As Microsoft phases out older Exchange Server versions, IT leaders are facing new decisions about how to stay compliant and cost-efficient. Understanding the current licensing landscape for Windows ...

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Hot on the heels of the NSA publishing a “high-risk of ...