Cybersecurity
The latest Cybersecurity coverage — news, analysis, and updates from the WindowsNews.AI desk.
Microsoft December Patch Tuesday 2024: 71 Updates Address Critical Vulnerabilities and Active Exploits
Microsoft December Patch Tuesday 2024: Overview Microsoft has released its December 2024 Patch Tuesday updates, encompassing 71 security vulnerabilities across various Microsoft product families....
AuthQuake Vulnerability Breaks Microsoft MFA with Distributed Brute-Force Attacks
The cybersecurity landscape has been shaken by the discovery of AuthQuake, a critical vulnerability affecting Microsoft's Multi-Factor Authentication (MFA) systems. This newly identified security...
Time to Upgrade: Navigating the Transition from Windows 10 to Windows 11
Introduction As the end of support for Windows 10 approaches on October 14, 2025, users are faced with a critical decision: upgrade to Windows 11 or continue using an unsupported operating system....
Microsoft Mandates NTLM Channel Binding and EPA to Block Relay Attacks
Microsoft has rolled out significant security enhancements to combat NTLM relay attacks, a persistent threat in Windows environments. These improvements focus on strengthening authentication...
AuthQuake: Critical Microsoft MFA Vulnerability Exposes Millions to Security Risks
Introduction In December 2024, cybersecurity firm Oasis Security unveiled a critical vulnerability in Microsoft's Multi-Factor Authentication (MFA) system, dubbed "AuthQuake." This flaw allowed...
Microsoft Warns: Windows 11 Upgrade Risks for Millions of Users Due to TPM 2.0 and Security Concerns
Microsoft has issued a stark warning to millions of Windows users about potential risks associated with upgrading to Windows 11, particularly concerning hardware compatibility and security...
Oasis Security Exposes AuthQuake Flaw Enabling Azure MFA Bypass
A newly discovered vulnerability in Microsoft's Azure Multi-Factor Authentication (MFA) service has sent shockwaves through the cybersecurity community. Researchers at Oasis Security have uncovered a...
AuthQuake: Critical MFA Vulnerability Exposed in Microsoft Azure & Office 365
AuthQuake: Serious MFA Vulnerability Discovered in Microsoft Services A newly discovered authentication bypass vulnerability dubbed "AuthQuake" is sending shockwaves through the Microsoft ecosystem,...
AuthQuake MFA bypass flaw threatens 400M Office 365 accounts with immediate patch required
A newly discovered critical vulnerability dubbed 'AuthQuake' has exposed over 400 million Microsoft Office 365 accounts to potential compromise, raising alarms across the cybersecurity community....
Critical Vulnerability in Microsoft MFA Puts User Security at Risk: What You Need to Know
A newly discovered critical vulnerability in Microsoft's Multi-Factor Authentication (MFA) system has raised significant security concerns for organizations relying on Azure MFA for protection. This...
December 2024 Windows Security Update: Microsoft Fixes 72 Critical Vulnerabilities
Microsoft's December 2024 Patch Tuesday has addressed 72 security vulnerabilities across Windows operating systems and related software, including several critical remote code execution flaws that...
June Patch Tuesday fixes 2 critical Office flaws enabling RCE, privilege escalation
Microsoft Office and Excel users face significant security risks following the discovery of two critical vulnerabilities (CVE-2024-49059 and CVE-2024-49069) that could allow remote code execution...