Hackaday

This Week In Security: Docker Auth, Windows Tools, And A Very Full Patch Tuesday

CVE-2026-34040 lets attackers bypass some Docker authentication plugins by allowing an empty request body. Present since 2024, this bug was caused by a previous fix to the auth workflow. In the ...

Ukraine war latest: Russia issues new threat to attack Europe

Ukraine-Russia war latest: Moscow publishes list of sites in Europe and UK it could attack for helping Kyiv - Senior Russian ...
Cybernews

Hackers dodging security tools by dropping secret QEMU virtual machines inside Windows

Hackers are dodging Windows security tools by running secret Linux virtual machines with QEMU, an open-source virtualizer.

Recently leaked Windows zero-days now exploited in attacks

Threat actors are exploiting three recently disclosed Windows security vulnerabilities in attacks aimed at gaining SYSTEM or ...

Microsoft’s Patch Tuesday release for April is a whopper

Nearly every major product family needs immediate patching, from Windows to Office to Microsoft Edge, SQL Server, and even ...

Microsoft Warns PC Users—New Windows Update May Lock You Out

New warning for Windows users. Barely 48 hours after Microsoft’s new security update went live, we had warnings that its ...
CSO Online

Caught, Quarantined, Re-installed: RedSun turns Microsoft Defender on itself

New PoC shows how Microsoft Defender can be tricked into rewriting malicious files into protected locations, enabling ...

Windows 11 gets improved privacy controls, better Windows Hello, and more in new builds

Friday Windows 11 preview builds are here, offering improvements for Windows Hello, Settings, File Explorer, and more in the ...