Live
Microsoft Fixes Critical 9.8-Rated DHCP Bug—Apply the July 2026 Update Now·MSFT +0.1%July Windows Updates Shut Down XSS Vulnerability in AD FS That Could Aid Identity Spoofing·NVDA +3.0%Microsoft Patches AD FS Infinite Loop Vulnerability That Could Disable Enterprise Sign-Ons·GOOGL +1.2%A Single Unpatched AD FS Server Can Crash Your Sign-Ins: Patch the July 14 DoS Flaw Now·AMZN +2.9%Active Directory Denial-of-Service Flaw Emerges: How to Prepare Before Patches Arrive·MSFT +0.1%Microsoft Ships AD FS Fix, But Automatic Remediation Is Months Away — Here’s How to Secure Your Keys Now·NVDA +3.0%Microsoft’s July Update Closes Hyper-V Privilege Flaw: Immediate Actions for Server Admins·GOOGL +1.2%Two Joomla Extensions Under Active Attack: CISA Orders Agencies to Patch File-Upload Flaws·AMZN +2.9%Microsoft Fixes Critical 9.8-Rated DHCP Bug—Apply the July 2026 Update Now·MSFT +0.1%July Windows Updates Shut Down XSS Vulnerability in AD FS That Could Aid Identity Spoofing·NVDA +3.0%Microsoft Patches AD FS Infinite Loop Vulnerability That Could Disable Enterprise Sign-Ons·GOOGL +1.2%A Single Unpatched AD FS Server Can Crash Your Sign-Ins: Patch the July 14 DoS Flaw Now·AMZN +2.9%Active Directory Denial-of-Service Flaw Emerges: How to Prepare Before Patches Arrive·MSFT +0.1%Microsoft Ships AD FS Fix, But Automatic Remediation Is Months Away — Here’s How to Secure Your Keys Now·NVDA +3.0%Microsoft’s July Update Closes Hyper-V Privilege Flaw: Immediate Actions for Server Admins·GOOGL +1.2%Two Joomla Extensions Under Active Attack: CISA Orders Agencies to Patch File-Upload Flaws·AMZN +2.9%

Windows Server Security

The latest Windows Server Security coverage — news, analysis, and updates from the WindowsNews.AI desk.

12 stories in view AI assisted desk updated 11:37 PM
Latest Most Read Breaking
Sort
Cve 2026 56159 · Patch Management

Microsoft Fixes Critical 9.8-Rated DHCP Bug—Apply the July 2026 Update Now

Microsoft released its July 2026 security updates on Tuesday, and among them is a fix for a critical remote-code-execution vulnerability in the Windows DHCP Server service. Rated 9.8 out of 10 on the...

Advertisement
Active Directory · Cve 2026 57976

Active Directory Denial-of-Service Flaw Emerges: How to Prepare Before Patches Arrive

On July 14, 2026, at 7:00 a.m. Pacific time, Microsoft published CVE-2026-57976, a security vulnerability it describes as "Windows Active Directory Domain Services Denial of Service Vulnerability."...

SE Security Desk·3d ago
Active Directory Federation Services · Ad Fs Hardening

Microsoft Ships AD FS Fix, But Automatic Remediation Is Months Away — Here’s How to Secure Your Keys Now

Microsoft shipped a security fix on July 14, 2026, for a dangerous elevation-of-privilege flaw in Active Directory Federation Services (AD FS) that attackers are already exploiting. But any...

SE Security Desk·3d ago
Cve 2026 54129 · Patch Tuesday

Microsoft’s July Update Closes Hyper-V Privilege Flaw: Immediate Actions for Server Admins

Microsoft addressed a confirmed elevation-of-privilege vulnerability in Windows Hyper-V as part of its July 14, 2026 Patch Tuesday release, urging administrators of all Hyper-V hosts to apply the fix...

SE Security Desk·4d ago
Cisa Kev · File Upload Vulnerabilities

Two Joomla Extensions Under Active Attack: CISA Orders Agencies to Patch File-Upload Flaws

The U.S. Cybersecurity and Infrastructure Security Agency added two file-upload vulnerabilities in widely used Joomla extensions to its Known Exploited Vulnerabilities Catalog on March 26, 2025,...

SE Security Desk·1w ago
Common Criteria Eal4 · Public Sector Procurement

RedCastle V6.0 Earns EAL4 Certification, Bolstering Windows Server 2025 Security for Government Deployments

On June 24, 2026, SGA Solutions announced that its RedCastle V6.0 server security product had achieved Common Criteria Evaluation Assurance Level 4 (EAL4) for Windows Server 2025 R3. The...

SE Security Desk·3w ago
Autonomous-it · Endpoint Remediation

Tanium secures FedRAMP authorization, launches autonomous Windows remediation in Japan

Tanium’s week of June 10, 2026, marked a decisive acceleration of its Autonomous IT vision, as the company simultaneously deepened its footprint in Asia, teased major conference reveals, and nabbed...

SE Security Desk·4w ago
Active Directory · Active Directory Risks

Patch CVE-2026-41089: Prioritize Internet-Facing Domain Controllers First

Microsoft’s May 2026 Patch Tuesday brought a stark reminder that network topology matters as much as patch speed. Among the 60+ vulnerabilities fixed this month, CVE-2026-41089 stands out—a...

SE Security Desk·5w ago
Dmz And Segmentation · Dns Monitoring

ReliaQuest Exposes OP-512: Chinese Hackers Use Modular IIS Web Shells to Steal Credentials

A sophisticated three-part web shell framework, linked to Chinese threat actors and tracked as OP-512, is actively compromising Internet Information Services (IIS) servers, according to research...

SE Security Desk·6w ago