Live
EDR-Redir V2 Exploits Windows Bind Links to Blind Security Tools·MSFT +0.1%Zero-Day Exploit in V8 Engine Triggers Urgent Browser Updates: What Windows Users Need to Know·NVDA +3.0%KB5061096: Microsoft’s PowerShell Hotpatch Brings Urgent Fix, But Restart Risk Lingers·GOOGL +1.2%Two Windows Bluetooth Flaws Could Give Attackers SYSTEM Access: Here’s What to Do·AMZN +2.9%Windows 11's Smart App Control Gets Outsmarted: Researchers Uncover Multiple Bypass Techniques·MSFT +0.1%CVE-2025-53136: Windows 11 Update Leaks Kernel Pointers, Defeating KASLR·NVDA +3.0%Windows 10 Still Runs on 53% of PCs: Your Urgent Migration Roadmap Before October 14·GOOGL +1.2%Okta Exposes VoidProxy Phishing Service That Steals Session Cookies to Bypass MFA·AMZN +2.9%EDR-Redir V2 Exploits Windows Bind Links to Blind Security Tools·MSFT +0.1%Zero-Day Exploit in V8 Engine Triggers Urgent Browser Updates: What Windows Users Need to Know·NVDA +3.0%KB5061096: Microsoft’s PowerShell Hotpatch Brings Urgent Fix, But Restart Risk Lingers·GOOGL +1.2%Two Windows Bluetooth Flaws Could Give Attackers SYSTEM Access: Here’s What to Do·AMZN +2.9%Windows 11's Smart App Control Gets Outsmarted: Researchers Uncover Multiple Bypass Techniques·MSFT +0.1%CVE-2025-53136: Windows 11 Update Leaks Kernel Pointers, Defeating KASLR·NVDA +3.0%Windows 10 Still Runs on 53% of PCs: Your Urgent Migration Roadmap Before October 14·GOOGL +1.2%Okta Exposes VoidProxy Phishing Service That Steals Session Cookies to Bypass MFA·AMZN +2.9%

Edr

The latest Edr coverage — news, analysis, and updates from the WindowsNews.AI desk.

12 stories in view AI assisted desk updated 7:05 AM
Latest Most Read Breaking
Sort
Bind Link · Edr

EDR-Redir V2 Exploits Windows Bind Links to Blind Security Tools

A new proof-of-concept tool called EDR-Redir V2 is demonstrating how attackers can exploit Windows' bind link facility and cloud filter stack to create sophisticated filesystem redirections that...

Advertisement
Cloud Intelligence · Code Signing

Windows 11's Smart App Control Gets Outsmarted: Researchers Uncover Multiple Bypass Techniques

Security researchers have documented real-world attacks that slip past Windows 11’s Smart App Control, exposing cracks in Microsoft’s cloud-powered application gatekeeper. The findings, published...

SE Security Desk·43w ago
Applocker · Cve-2025-53136

CVE-2025-53136: Windows 11 Update Leaks Kernel Pointers, Defeating KASLR

Microsoft's attempt to seal a kernel security hole has backfired. A patch originally shipped in October 2024 to fix CVE-2024-43511 inadvertently created a new vulnerability—tracked as...

SE Security Desk·44w ago
22h2 · Activation

Windows 10 Still Runs on 53% of PCs: Your Urgent Migration Roadmap Before October 14

More than half of the world’s PCs—53% to be precise—are still running Windows 10, a staggering statistic just weeks before Microsoft officially retires the operating system on October 14, 2025....

AI AI & Copilot Desk·44w ago
Admin Security · Aitm

Okta Exposes VoidProxy Phishing Service That Steals Session Cookies to Bypass MFA

A new industrialized phishing service named VoidProxy is arming cybercriminals with the ability to hijack Google and Microsoft accounts in real time, exfiltrating session cookies that bypass...

SE Security Desk·44w ago
Alert Fatigue · Application Whitelisting

Windows 11's Security Paradox: How UAC, Smart App Control, and VBS Can Weaken Your Defenses

Microsoft has equipped Windows 11 with a formidable arsenal of built-in security features, but a growing body of evidence—from community audits to formal benchmark studies—shows that four of...

SE Security Desk·44w ago
August 2025 · Cve

Microsoft’s September Patch Tuesday Combats Office RCEs and Preview Pane Exploits with 80+ Fixes

Microsoft’s September 9, 2025 Patch Tuesday release delivers over 80 security fixes, but a cluster of critical Office remote code execution (RCE) vulnerabilities—some exploitable through document...

SE Security Desk·44w ago
Attack Vector · Bitlocker

BitLocker Kernel Flaw CVE-2025-54912 Lets Attackers Escalate to SYSTEM, Microsoft Urges Patching

Microsoft has confirmed a critical use-after-free vulnerability in the Windows BitLocker stack, tracked as CVE-2025-54912, that could allow an authorized local attacker to gain SYSTEM privileges on...

SE Security Desk·44w ago
Cve-2025-54915 · Cybersecurity

Microsoft Patches Critical Type-Confusion Bug in Windows Defender Firewall Service (CVE-2025-54915)

Microsoft has released a patch for CVE-2025-54915, a local privilege escalation vulnerability in the Windows Defender Firewall Service that exploits a type-confusion error. The flaw, described by...

SE Security Desk·44w ago