Microsoft details a new ClickFix variant abusing DNS nslookup commands to stage malware, enabling stealthy payload delivery ...

Microsoft announced that it will disable the 30-year-old NTLM authentication protocol by default in upcoming Windows releases due to security vulnerabilities that expose organizations to cyberattacks.

Microsoft has detailed a three-phased roadmap leading to NTLM being completely disabled in the next version of Windows Server ...

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns.

Intel and AMD server CPU shortages are hitting China as AI data center demand surges, pushing lead times to six months and ...

Microsoft intends to disable the insecure NTLM protocol by default with the next Windows Server version. However, its release date remains open.

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

Notepad++ targeted and used to deliver poisoned updates to a select group of victims.

For nearly 30 years, security experts have warned organizations to ditch the weak NTLM authentication protocol in Windows. But its use persists, even amidst easy ...

Microsoft links SolarWinds WHD exploits to RCE, lateral movement, and domain compromise in multi-stage attacks.

Future Windows updates will disable NTLM authentication, bolstering security and protecting users against legacy protocol vulnerabilities.