A significant vulnerability affecting Lenovo machines that allows users to bypass AppLocker security controls through a writeable file located in the Windows system directory.
The issue, discovered by Oddvar Moe from TrustedSec, involves improper file permissions on the MFGSTAT.zip file that comes preinstalled with...
Microsoft has officially acknowledged a known issue affecting Windows 11 users following the installation of the June 2025 non-security preview update, with error events appearing in Windows Firewall logs that can be safely disregarded by users and system administrators.
Microsoft confirmed on July 2, 2025,...
Tenable has released critical security updates for its Nessus vulnerability scanner following the discovery of multiple security vulnerabilities, including a severe Windows-specific vulnerability that could allow non-administrative users to overwrite system files with elevated privileges.
The company has issued Nessus versions 10.8.5 and 10.9.0...
In March and April 2024, the Ukrainian national cyber incident response team, CERT-UA, detected a significant cyberattack targeting the information and communication system (ICS) of a central executive body.
During forensic investigation, researchers identified a Windows-based server that had been repurposed as an unauthorized...
Security researchers have uncovered a sophisticated global supply chain attack, where threat actors utilized over 60 GitHub repositories to host trojanized versions of popular Python-based hacking tools.
The campaign, attributed to the group known as “Banana Squad,” specifically targeted Windows systems with the end...
Cybersecurity researchers have demonstrated how attackers can exploit the Windows Registry through programmatic manipulation, highlighting critical vulnerabilities in system configuration databases.
The study reveals sophisticated techniques for achieving persistence, evading detection, and altering system behavior through C++ code that dynamically creates and modifies registry...