CISA Warns: Multiple Milesight Camera Flaws Enable RCE and DoS Attacks
A new CISA advisory has placed Milesight surveillance cameras squarely in the crosshairs of enterprise security teams. The advisory bundles five distinct CVE families affecting multiple camera...
CISA Warns of Yadea T5 E-Bike Vulnerability CVE-2025-70994 Allowing Key-Fob Signal Forging
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has published an Industrial Control Systems (ICS) advisory detailing a critical vulnerability in Yadea's T5 electric bicycle. Tracked...
CVE-2025-65856: Unauthenticated Admin Access via ONVIF in Xiongmai XM530 Cameras
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent advisory regarding a critical authentication-bypass vulnerability in Hangzhou Xiongmai Technology Co., Ltd XM530...
Windows 11 Drop Tray Redesign Makes Drag-and-Drop File Sharing Less Intrusive
Microsoft has quietly done something Windows users have been asking for with unusual consistency: it took a small but intrusive file-sharing gesture and made it feel like part of the desktop again....
Windows 11 Test Lets Users Skip Setup Updates with New "Update Later" Button
Microsoft’s latest Windows 11 setup tweak is small in appearance but significant in practice: after months of tightening the Out-of-Box Experience, the company is now letting some users skip...
CISA Warns No Patch for Critical Auth Bypass in XM530 Cameras via ONVIF
CISA Issues Critical Advisory for Hangzhou XM530 IP Cameras The Cybersecurity and Infrastructure Security Agency (CISA) has released an ICS advisory detailing a severe authentication bypass...
CISA Warns of Critical 9.4-Rated Auth Bypass in Carlson VASCO-B GNSS Receiver
Critical infrastructure operators are being urged to patch Carlson Software’s VASCO-B GNSS Receiver after CISA published a new ICS advisory describing a high-severity authentication flaw that could...
CISA Warns: Critical Authentication Flaw in Carlson VASCO-B GNSS Receiver Could Enable Remote Takeover
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent advisory regarding a critical authentication vulnerability in the Carlson Software VASCO-B GNSS Receiver. Tracked...
Copilot Now Edits Word, Excel, and PowerPoint Without Your Approval
Microsoft has moved Copilot out of the polite, suggestion-only role and into the document itself. In a general-availability rollout announced on April 22, 2026, the company said its agentic...
Microsoft Copilot Agent Mode Automates Tasks in Word, Excel, PowerPoint
Microsoft is crossing a meaningful line inside Office: Copilot is moving from a helper that drafts and summarizes into a tool that can actively complete work inside Word, Excel, and PowerPoint. The...
Files 4.0.39 Launches Custom Toolbar and NTFS Tags Windows 11 Can't Match
Files 4.0.39 has arrived, and it brings two features that Windows 11's File Explorer still lacks: a fully customizable toolbar and native file tagging. The update, released on March 15, 2025, is the...
Microsoft Sticks to Its Guns: Windows 11 Doesn't Need Third-Party Antivirus for Most Users
Microsoft is once again making a very public case that Windows 11 does not need a separate antivirus subscription for most people. That message is not entirely new, but the company’s latest wording...