Microsoft patches 59 vulnerabilities, including six actively exploited zero-days, with CISA mandating urgent federal remediation.

Microsoft’s latest Patch Tuesday release is notable less for its size and more for what was already happening in the wild. The company delivered fixes for 58 security vulnerabilities, and confirmed ...

Microsoft’s February 2026 Patch Tuesday addresses 58 security vulnerabilities across Windows and Office. Six of them were ...

Microsoft’s monthly release of security updates Tuesday included fixes for six vulnerabilities that are considered to be ...

Three of those zero-days are security feature bypass flaws, which give attackers a way to slip past built-in protections in ...

The zero-day flaw CVE-2026-21513 is a security bypass bug targeting MSHTML, the proprietary engine of the default Web browser in Windows. CVE-2026-21514 is a related security feature bypass in ...

Windows Remote Access Connection Manager Denial of Service Vulnerability ( CVE-2026-21525 ): This 6.2-rated bug is triggered by a null pointer dereference in Windows Remote Access Connection Manager ...

Researchers at Huntress and Microsoft have shared findings from their analysis of a new SolarWinds Web Help Desk vulnerability.

Today is Microsoft' 2026 Patch Tuesday with security updates for 58 flaws, including 6 actively exploited and three publicly ...

Microsoft's Defender Security Research Team has observed threat actors actively exploiting internet-exposed SolarWinds Web Help Desk instances in multi-stage intrusions that led to lateral movement ...

Malwarebytes Labs has identified a new scam in which threat actors are using party invites to trick users into installing a remote access tool (RAT) that gives them full control over infected devices.

Microsoft releases patches for six zero-day flaws in its latest monthly update, many of them related to security feature bypass issues.