Dark Reading

Microsoft Patches 6 Actively Exploited Zero-Days

Three of those zero-days are security feature bypass flaws, which give attackers a way to slip past built-in protections in ...
Krebs on Security

Patch Tuesday, February 2026 Edition

The zero-day flaw CVE-2026-21513 is a security bypass bug targeting MSHTML, the proprietary engine of the default Web browser in Windows. CVE-2026-21514 is a related security feature bypass in ...

Global Group ransomware gang running new campaign using Windows shortcut files

Exploiting .lnk files is a strategy that has been used for years and still works, says new report from Forcepoint.
Microsoft

Manipulating AI memory for profit: The rise of AI Recommendation Poisoning

That helpful “Summarize with AI” button? It might be secretly manipulating what your AI recommends. Microsoft security researchers have discovered a growing trend of AI memory poisoning attacks used ...
Redmondmag.com

Microsoft Warns Harmful Prompt Attacks Can Undermine LLM Safety Controls

New research outlines how attackers bypass safeguards and why AI security must be treated as a system-wide problem.