Wdac
The latest Wdac coverage — news, analysis, and updates from the WindowsNews.AI desk.
Microsoft Intune August 2025 Update Adds Multi-Admin Approval and Patches Devices Before First Login
Microsoft’s August 2025 service release for Intune (2508) is now rolling out, delivering the most significant expansion of endpoint security and administrative controls in years. The update...
Rockwell FactoryTalk ViewPoint Flaw Lets Attackers Hijack MSI Repairs for SYSTEM Access
A critical privilege escalation vulnerability in Rockwell Automation’s FactoryTalk ViewPoint HMI thin-client software allows a low-privileged local attacker to gain SYSTEM-level control of...
Rockwell Patch Plugs SYSTEM Takeover Hole in FactoryTalk ViewPoint via MSI Repair Hijack
A high-severity local privilege-escalation vulnerability in Rockwell Automation’s FactoryTalk ViewPoint HMI software can hand an attacker full SYSTEM control of a Windows machine by exploiting a...
Siemens Flags CVSS 8.5 DLL Hijacking in Web Installer, Urges Immediate Mitigation for ICS Products
Siemens has confirmed a severe vulnerability in its Web Installer used by the Online Software Delivery (OSD) mechanism, allowing attackers to hijack the installation process and execute arbitrary...
Microsoft’s TPM 2.0 Mandate Is Non-Negotiable: Higher Education’s Multi-Million Ransomware Lesson
Microsoft has declared its TPM 2.0 hardware requirement for Windows 11 “non-negotiable,” closing the door on any hopes that the company might lower security standards to ease the transition from...
Microsoft Office Buffer Over-Read Bugs Strike Word and Excel: What Enterprises Must Patch Now
Microsoft has rolled out crucial patches for two high-severity buffer over-read vulnerabilities in Microsoft Word and Excel, both enabling local attackers to extract sensitive memory contents. The...
Critical Windows AFD.sys Kernel Flaw (CVE-2025-53718) Exposes Systems to Local Privilege Escalation
Microsoft has issued a high-priority security advisory for a use-after-free vulnerability in the Windows Ancillary Function Driver for WinSock (AFD.sys). Tracked as CVE-2025-53718, the flaw allows a...
CVE-2025-53137: Microsoft’s AFD.sys Patch Stops Local Attackers from Hijacking SYSTEM
A use-after-free vulnerability in the Windows Ancillary Function Driver for WinSock (AFD.sys), tracked as CVE-2025-53137, hands any local attacker with a toehold on a machine a direct path to SYSTEM...
Microsoft Patches Windows Installer Flaw Allowing SYSTEM-Level Elevation
Microsoft has fixed a high-impact elevation-of-privilege vulnerability in Windows Installer that could allow a locally authorized attacker to gain SYSTEM-level privileges on unpatched systems....
Microsoft Warns of Excel RCE Flaw CVE-2025-53759, Workarounds Provided
A newly disclosed vulnerability in Microsoft Excel, tracked as CVE-2025-53759, allows attackers to execute arbitrary code on a victim’s machine by tricking them into opening a specially crafted...
Critical Security Flaw in Windows App Control Bypassed by Attackers
Critical Security Flaw in Windows App Control Bypassed by Attackers A recently disclosed vulnerability, CVE-2025-33069, in Windows App Control for Business (WDAC) allows attackers with local access...
Microsoft's Pluton & Security Copilot redefine Windows 2025 endpoint defense with Zero Trust mandates
Windows endpoint security is undergoing a radical transformation as enterprises prepare for 2025's threat landscape. Microsoft's integrated security stack is evolving with AI-driven defenses,...