PROBABLYPWNED
Home/Tag/Windows

Windows

12 articles tagged with "Windows"

Microsoft Fixes 120 Flaws in May Patch Tuesday, 17 Critical
Vulnerabilities3 min read

Microsoft Fixes 120 Flaws in May Patch Tuesday, 17 Critical

Microsoft's May 2026 Patch Tuesday addresses 120 vulnerabilities including 17 critical RCE flaws. No zero-days, but Word preview pane attacks and Netlogon bugs demand immediate attention.

Vulnerability DeskMay 13, 2026
GhostLock Locks 500K Files in 3 Minutes Without Encryption
Tools5 min read

GhostLock Locks 500K Files in 3 Minutes Without Encryption

A new proof-of-concept tool abuses Windows CreateFileW API to block file access across SMB shares. The technique evades all tested EDR products and requires no elevated privileges.

ProbablyPwned Editorial TeamMay 12, 2026
Microsoft Defender Flags Legit DigiCert Certs as Trojans
Announcements4 min read

Microsoft Defender Flags Legit DigiCert Certs as Trojans

A faulty signature update caused Windows Defender to detect trusted DigiCert root certificates as Trojan:Win32/Cerdigent.A!dha. Microsoft has released a fix, but some users already reinstalled Windows.

ProbablyPwned Editorial TeamMay 3, 2026
APT28 Exploiting Windows Shell Flaw to Steal NTLM Credentials
Vulnerabilities5 min read

APT28 Exploiting Windows Shell Flaw to Steal NTLM Credentials

Russian state hackers weaponize CVE-2026-32202, an incomplete patch for Windows Shell that enables zero-click NTLM hash theft. Microsoft confirms active exploitation after Akamai discovers the bypass.

Vulnerability DeskApr 28, 2026
PhantomRPC: Unpatched Windows Flaw Enables SYSTEM Escalation
Vulnerabilities5 min read

PhantomRPC: Unpatched Windows Flaw Enables SYSTEM Escalation

Kaspersky discloses PhantomRPC, an architectural Windows RPC vulnerability enabling SYSTEM-level privilege escalation across all Windows versions. Microsoft declined to patch despite five exploitation paths.

Vulnerability DeskApr 27, 2026
Kyber Ransomware Deploys Post-Quantum Crypto on Windows
Malware4 min read

Kyber Ransomware Deploys Post-Quantum Crypto on Windows

New Kyber ransomware operation uses NIST-standardized Kyber1024 encryption on Windows while targeting VMware ESXi with a separate variant. Rapid7 analysis reveals the ESXi version's claims are false.

Malware DeskApr 23, 2026
RedSun: Second Windows Defender Zero-Day Drops in Two Weeks
Vulnerabilities4 min read

RedSun: Second Windows Defender Zero-Day Drops in Two Weeks

Frustrated researcher 'Chaotic Eclipse' releases RedSun, another Windows Defender privilege escalation exploit granting SYSTEM access. Microsoft has not yet patched this second zero-day.

Vulnerability DeskApr 17, 2026
Microsoft Patches Six Zero-Days in February Patch Tuesday
Vulnerabilities4 min read

Microsoft Patches Six Zero-Days in February Patch Tuesday

Microsoft's February 2026 Patch Tuesday fixes 59 flaws including six actively exploited zero-days. CrowdStrike confirmed CVE-2026-21533 was used in attacks targeting US and Canada since December.

Vulnerability DeskFeb 12, 2026