Forbes

New Windows Warning As Zero-Day With No Official Fix Confirmed For All Users

Update, Dec. 07, 2024: This story, originally published Dec. 06 now includes a statement from Microsoft about the new Windows zero-day vulnerability and further information about the 0patch ...

Microsoft Copilot reprompt exploit allowed attackers to steal your AI data

Varonis Threat Labs has published a report detailing a now patched security exploit discovered in Copilot that let attackers ...
Krebs on Security

Patch Tuesday, January 2026 Edition

Microsoft today issued patches to plug at least 113 security holes in its various Windows operating systems and supported ...
The Register on MSN

Windows info-disclosure 0-day bug gets a fix as CISA sounds alarm

First Patch Tuesday of 2026 goes big Microsoft and Uncle Sam have warned that a Windows bug disclosed today is already under ...

Copilot Exploit Bypasses Safeguards And Steals Data Even After You Close The Chat

Reprompt is a Copilot exploit, that can use multi-stage prompts to steal user data, but thankfully it's already been patches.
Dark Reading

Nation-State Groups Abuse Microsoft Windows Shortcut Exploit

State-sponsored APTs from North Korea, Iran, Russia, and China are targeting victims using a Windows shortcut file exploit, according to new research from Trend Micro’s Zero Day Initiative (ZDI). In ...
TweakTown

WinRAR 'high-risk' exploit discovered, make sure you update to the latest release

TL;DR: WinRAR has a critical security vulnerability (CVE-2025-6218) allowing remote code execution via directory traversal in Windows versions. This exploit risks sensitive data and system integrity.