-
Microsoft today released updates to fix more than 50 security holes in its Windows operating systems and other software, including patches for a whopping six “zero-day” vulnerabilities that attackers are already exploiting in the wild.
·
Chris Goettl, CVE-2026-21256, CVE-2026-21509, CVE-2026-21510, CVE-2026-21513, CVE-2026-21514, CVE-2026-21516, CVE-2026-21519, CVE-2026-21523, CVE-2026-21525, CVE-2026-21533, Desktop Window Manager, Immersive, Ivanti, Kev Breen, Latest Warnings, Microsoft Word, MSHTML, sans internet storm center, Security Tools, Time to Patch, Windows Remote Desktop Services, Windows shell¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
The European Commission reports a cyber attack on its central mobile infrastructure that may have exposed staff names and phone numbers.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Ivanti has disclosed two critical remote code execution (RCE) flaws (CVE-2026-1281 & CVE-2026-1340) in its EPMM software.
·
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Microsoft today issued patches to plug at least 113 security holes in its various Windows operating systems and supported software. Eight of the vulnerabilities earned Microsoft’s most-dire “critical” rating, and the company warns that attackers are already exploiting one of the bugs fixed today.
·
Adam Barnett, Chris Goettl, CVE-2023-31096, CVE-2026-0628, CVE-2026-0891, CVE-2026-0892, CVE-2026-20805, CVE-2026-20952, CVE-2026-20953, CVE-2026-21265, Desktop Window Manager, Immersive, Ivanti, Kev Breen, Latest Warnings, Microsoft Office, Microsoft Patch Tuesday January 2026, Rapid7, The Coming Storm, Time to Patch¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Cyber threat actors have weaponized two critical Ivanti Endpoint Manager Mobile (EPMM) vulnerabilities—CVE-2025-4427 and CVE-2025-4428—to deploy sophisticated malicious loaders and listeners on compromised servers. The malware consists of two sets of c…
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
