Windows 11 is a technology platform tracked across 50 threat clusters and 100 intelligence report mentions on ThreatCluster. First observed October 28, 2025; most recent activity July 17, 2026.
A critical vulnerability in FortiWeb Web Application Firewall (WAF) has been actively exploited, allowing attackers to gain full administrative access to affected systems. Organizations using FortiWeb are at risk of…
On March 10, 2026, Microsoft released its Patch Tuesday updates, fixing 79 vulnerabilities, including two zero-day flaws. The updates address critical vulnerabilities across various products, with one zero-day actively…
Microsoft is implementing a two-phase plan to disable the hands-free deployment feature in Windows Deployment Services (WDS) due to a critical remote code execution (RCE) vulnerability, CVE-2026-0386, published on…
A proof-of-concept (PoC) exploit has been released for a NTLM reflection bypass vulnerability, tracked as CVE-2026-24294, which allows attackers to gain SYSTEM-level access on Windows Server 2025. This vulnerability…
Notepad++ released version 8.9.7 on July 14, 2026, fixing five security vulnerabilities. Among these is a critical PowerShell command injection flaw that could allow arbitrary code execution during installation. The…
On June 9, 2026, Microsoft released its largest Patch Tuesday update, addressing 206 vulnerabilities, including three zero-day flaws. Among the critical vulnerabilities, 32 were rated as critical, with 28 classified as…
Google's Project Zero disclosed a zero-click exploit chain for the Pixel 10, building on previous research for the Pixel 9. This exploit allows attackers to escalate privileges to root without user interaction by…
Security researcher Nightmare-Eclipse has disclosed two critical zero-day vulnerabilities affecting Windows 11 and Windows Server 2022/2025. The first, YellowKey, allows attackers to bypass BitLocker encryption,…
A newly discovered Windows zero-day exploit, named MiniPlasma, allows attackers to gain SYSTEM-level privileges on fully patched Windows systems. The exploit targets the cldflt.sys Cloud Filter driver, specifically the…
A new downgrade attack, dubbed BitUnlocker, has been identified, allowing attackers with physical access to Windows 11 machines to bypass BitLocker disk encryption in under 5 minutes. This attack exploits…