Articles from 2026
Browse all Windows news articles published in 2026
Microsoft Patches Critical SCOM Privilege Escalation Vulnerability CVE-2026-20967
Microsoft released a security update on March 10, 2026 addressing an authenticated, network-based elevation-of-privilege vulnerability in System Center Operations Manager tracked as CVE-2026-20967....
Microsoft Backs Anthropic in Pentagon AI Contract Challenge: What It Means for Windows AI Development
Microsoft has taken the extraordinary step of publicly supporting Anthropic's legal challenge against the Pentagon's AI procurement process, creating a direct confrontation between commercial AI...
CVE-2026-23656: Windows App Installer Spoofing Vulnerability Explained
Microsoft has documented CVE-2026-23656 as a Windows App Installer spoofing vulnerability that enables unauthenticated attackers to present spoofed installer interfaces or metadata by exploiting...
Microsoft Patches Critical SharePoint RCE Vulnerability CVE-2026-26114 in March 2026 Security Update
Microsoft released a critical security update on March 10, 2026 addressing a high-severity remote code execution vulnerability in on-premises Microsoft SharePoint Server. Tracked as CVE-2026-26114,...
Essential Open Source Tools Every Windows User Should Install First
Windows ships with a usable baseline of apps, but for many power users the real Windows experience begins the moment they start installing free, open-source replacements. A recent How-To-Geek roundup...
Exchange Online Gains Per-Connector SMTP DANE and MTA-STS Controls for Granular Email Security
Microsoft has introduced per-connector configuration options for SMTP DANE and MTA-STS validation in Exchange Online outbound connectors, giving administrators precise control over email transport...
Native RSAT for Arm Windows 11 Arrives: IT Admin Tools Now Installable on Arm64 Devices
Microsoft has delivered on its promise to bring native Remote Server Administration Tools (RSAT) to Arm-based Windows 11 devices. The long-awaited support, previously listed as a roadmap item, is now...
CVE-2026-26113: Microsoft Office RCE Vulnerability with Local Attack Vector Explained
Microsoft's security advisory for CVE-2026-26113 describes a "Microsoft Office Remote Code Execution Vulnerability" with a CVSS vector that lists the Attack Vector (AV) as Local (L), creating...
CVE-2026-26112: Microsoft's Excel Vulnerability Classification Sparks Security Confusion
Microsoft's March 2026 security advisory for CVE-2026-26112 labels the flaw as a \"Microsoft Excel Remote Code Execution Vulnerability,\" but the accompanying CVSS vector tells a different story. The...
Microsoft Patches Critical RRAS Remote Code Execution Vulnerability CVE-2026-26111 in March 2026 Update
Microsoft's March 10, 2026 security update addresses a high-severity remote code execution vulnerability in the Windows Routing and Remote Access Service (RRAS) tracked as CVE-2026-26111. This...
Microsoft Patches SharePoint Spoofing XSS Vulnerability CVE-2026-26105 in March 2026 Security Update
Microsoft released a critical security update on March 10, 2026, addressing CVE-2026-26105, a high-severity spoofing vulnerability affecting on-premises Microsoft SharePoint Server installations....
CVE-2026-25190: Microsoft Patches Critical GDI Vulnerability in March 2026 Security Update
Microsoft's March 2026 security update includes a newly cataloged Windows Graphics Device Interface vulnerability tracked as CVE-2026-25190, a high-severity code-execution flaw that requires...