IT admins will be busy this month patching Microsoft software and apps, but not nearly as busy as they were in January.

A critical zero-day vulnerability in Windows servers running the Kerberos authentication system, first disclosed in May, has now been patched by Microsoft, but must be given high priority by admins ...

The zero-day flaw CVE-2026-21513 is a security bypass bug targeting MSHTML, the proprietary engine of the default Web browser in Windows. CVE-2026-21514 is a related security feature bypass in ...

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Hot on the heels of the NSA publishing a “high-risk of ...

Microsoft on Thursday deployed a reworked update for a critical vulnerability in the Windows Server Update Service (WSUS) that has come under attack in the wild. CVE-2025-59287 is a remote code ...

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. The latest warning from CISA, as part of Binding Operational ...

Today is Microsoft' 2026 Patch Tuesday with security updates for 58 flaws, including 6 actively exploited and three publicly ...

Microsoft has released Windows 11 KB5077181 and KB5075941 cumulative updates for versions 25H2/24H2 and 23H2 to fix security ...

Microsoft's February Patch fixes 6 zero-days - but some Windows users shouldn't update yet ...

The January Windows update introduced a couple of new bugs. The glitches affect Windows 11 and 10 and Windows Server. Microsoft has issued emergency patches to resolve the problems. Ah, Microsoft.