Windows

A newly disclosed Windows zero-day vulnerability named MiniPlasma affects the Cloud Files Mini Filter Driver (cldflt.sys), allowing attackers to gain SYSTEM privileges on fully patched Windows systems. The flaw is reportedly still unpatched despite prior fixes and can be reliably exploited under certain conditions.

Dell confirms a SupportAssist update is causing blue-screen crashes and random reboots on Windows 10 and Windows 11 systems. Users are advised to remove the affected service.

Microsoft patches CVE-2026-32202, a Windows zero-click flaw exploited by APT28 hackers to bypass Defender SmartScreen and steal authentication hashes.

Microsoft introduces major Windows Update changes that let users shut down or restart without forced updates, pause updates longer, and gain better control over installations.

RedSun zero-day exploits Windows Defender to gain SYSTEM access. Learn how NPAV EPS protects against zero-day and privilege escalation attacks.

Microsoft introduces new RDP warnings in April 2026 update to prevent phishing attacks via malicious .rdp files and unauthorized remote access.

Microsoft confirms Windows 11 April 2026 updates may force BitLocker recovery key entry due to policy issues, impacting enterprise systems and IT operations.

The BlueHammer Windows zero-day vulnerability allows attackers to gain SYSTEM-level access using public exploit code, posing a major security risk.

CVE-2025-23358 in NVIDIA App allows code execution—learn about the risk, affected versions, and urgent patching steps.

FIN7 uses SSH backdoor for remote access—learn about the tactics, persistence, and defenses to protect against this advanced threat.