A flaw in Cortana allowed researchers to take over a locked Windows machine and execute arbitrary code.

AMD notified users about new available Spectre CPU firmware and Windows 10 patches.

Researchers say a 18-year-old programming error by Microsoft is creating a kernel bug that can be abused by an attacker.

Microsoft releases a total of 57 security patches, part of its July Patch Tuesday, with 20 rated critical.

The SMBv1 file-sharing protocol abused by the NSA’s EternalBlue exploit to spread WannaCry ransomware is being disabled in the upcoming Windows Fall Creators Update, or Redstone 3.

Microsoft released patches on Tuesday for unsupported versions of Windows, a decision prompted by three NSA exploits that remained unaddressed from April’s ShadowBrokers leak.

Now that researchers have built a port of EternalBlue to Windows 10, they’ve probably only now caught up to what the NSA has had for a long while.

Researchers have ported the EternalBlue exploit to Windows 10, meaning that any unpatched version of Windows can be affected by the NSA attack.

More than half of enterprises are exposing themselves to unnecessary risk by running out-of-date versions of Flash.

As Microsoft hardens its defenses with tools such as Control Flow Guard, researchers at Endgame are preparing for the reality of Counterfeit Object-Oriented Programming attacks to move from theoretical to real.