CISA gives feds 3 days to patch actively exploited BeyondTrust flaw

CISA ordered U.S. government agencies on Friday to secure their BeyondTrust Remote Support instances against an actively ...

New ClickFix attack abuses nslookup to retrieve PowerShell payload via DNS

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.
CNET

Windows Secure Boot Certificates From 2011 Will Be Expiring Soon. What You Need to Know

In June 2025, Microsoft announced that, in June 2026, it would begin deprecating Secure Boot certificates of Windows systems ...