Hackaday

This Week In Security: Docker Auth, Windows Tools, And A Very Full Patch Tuesday

CVE-2026-34040 lets attackers bypass some Docker authentication plugins by allowing an empty request body. Present since 2024, this bug was caused by a previous fix to the auth workflow. In the ...
Windows Report

Microsoft Warns KB5082063 Triggers Boot Loops on Some Windows Server DCs

Microsoft confirms KB5082063 bug causing restart loops on Windows Server domain controllers, impacting authentication and enterprise environments.
Security Boulevard

DAST Tools: Complete Buyer’s Guide & 10 Solutions to know in 2026

Compare the best DAST tools in 2026. Our buyer's guide covers 10 dynamic application security testing solutions, key features ...

Open-source tool decrypts all private data collected by Windows Recall on Copilot PCs

Alexander Hagenah previously exposed issues affecting Windows Recall with his TotalRecall tool, prompting Microsoft to ...

Microsoft adds new safety rails to save you from remote desktop attacks

Microsoft has shipped one of the most practically useful security updates in recent memory, and if you work in an environment ...

The FBI Just Busted a Global Phishing Empire Targeting Microsoft 365 Accounts—Here’s How They Beat MFA

Some 17,000 victims were targeted by a global phishing operation that captured credentials and bypassed multi-factor ...

AI is now powering cyberattacks, Microsoft warns

Microsoft Threat Intelligence says cybercriminals are using AI across nearly every stage of a cyberattack to move faster and ...

10 Microsoft account settings I wish I had checked sooner

If a hacker gained access to your Microsoft account, they could download your OneDrive files, bypass your Windows PC’s ...
Windows Report

Fake Microsoft 365 Pages Used in Payroll Theft Campaign

Microsoft warns Storm-2755 is targeting Canadian employees with payroll hijacking attacks using phishing and AiTM techniques ...
Hackaday

This Week In Security: Flatpak Fixes, Android Malware, And SCADA Was IOT Before IOT Was Cool

Rowhammer attacks have been around since 2014, and mitigations are in place in most modern systems, but the team at gddr6.fail has found ways to apply the attack to current-generation GPUs.

Microsoft: Canadian employees targeted in payroll pirate attacks

A financially motivated threat actor tracked as Storm-2755 is stealing Canadian employees' salary payments after hijacking ...