Windows Defense
The latest Windows Defense coverage — news, analysis, and updates from the WindowsNews.AI desk.
Sophos Exposes AI Ransomware Toolkit That Automates AD Discovery and EDR Evasion
Sophos researchers have exposed an AI-assisted ransomware toolkit that sharply accelerates Active Directory (AD) enumeration and automates evasion testing against endpoint detection and response...
CVE-2026-20872: Critical NTLM Leak in Windows File Explorer - Analysis & Mitigations
Microsoft has disclosed a significant security vulnerability, tracked as CVE-2026-20872, affecting Windows File Explorer's preview and metadata handling functionality. This flaw represents a serious...
PassiveNeuron APT Targets Windows Servers with NeuralExecutor & Cobalt Strike
Kaspersky's Global Research and Analysis Team (GReAT) has uncovered a sophisticated cyber-espionage campaign dubbed PassiveNeuron, specifically targeting Windows Server environments with a...
2024 Microsoft patched record 90 vulnerabilities per Patch Tuesday, including 9.8-rated zero-day
Introduction In 2024, Microsoft faced a record number of security vulnerabilities across its Windows operating systems and related products. Despite the high tally, the company's proactive approach...