Microsoft patches Defender zero-days exploited in live attacks
… CISA added both vulnerabilities to its Known Exploited Vulnerabilities catalog on May 20, 2026, giving Federal Civilian Executive Branch agencies until June 3 to confirm patching. …
Search
Microsoft Exchange Server zero-day exploited via crafted email
… CVE-2026-42897 arrived just two days after May's Patch Tuesday, which patched 120 vulnerabilities but disclosed no zero-days in its release notes. …
Microsoft's MDASH AI found 16 critical Windows flaws before hackers could exploit them
Microsoft has a new AI system that hunts for Windows vulnerabilities, and it just proved its worth. …
Windows zero-day CVE-2026-32202 confirmed as exploited
… CISA added CVE-2026-32202 to its Known Exploited Vulnerabilities catalog today, ordering US federal agencies to patch by May 12. …
Google identifies first AI-developed zero-day exploit
… North Korean group APT45 has been sending thousands of repetitive prompts to AI models to recursively analyze vulnerabilities and build an exploit arsenal at a scale that would be impractical to domanually. …
Nightmare Eclipse banned from GitHub and GitLab, vows July 14 attack
… Previous posts warned of an intent to escalate to remote code execution vulnerabilities if Microsoft continued to dismiss their reports. …
Microsoft mitigates YellowKey BitLocker bypass, no patch yet
…Affected systems and what administrators should do now CVE-2026-45585 carries a CVSS score of 6.8 and requires physical access, but Microsoft rates exploitation as "More Likely" given that the…
MiniPlasma zero-day gives SYSTEM access on fully patched Windows 11
… All three original exploits, BlueHammer, RedSun, and UnDefend, were confirmed being exploited in real attacks by Huntress researchers shortly after public disclosure. …
Trump Mobile website reportedly leaking customers’ personal data
…Coffeezilla received the information via an anonymous source who demonstrated the vulnerability to the YouTuber in private. The exploit is supposedly “not complicated”. Coffeezilla and his source have reached out to the…
Pwn2Own Berlin 2026 - Windows 11 and Microsoft Exchange hacked
… Valentina Palmiotti of IBM X-Force collected $70,000 across two separate exploits targeting the NVIDIA Container Toolkit and Red Hat Linux. …