SecurityWeek

GhostPoster Firefox Extensions Hide Malware in Icons

Tens of thousands of users have installed GhostPoster Firefox extensions, which rely on steganography to hide malware in ...

Ho ho ho! December’s Patch Tuesday delivers three zero-days

It’s a holiday miracle with no critical Windows patches and an unusually low number of updates overall — but with three ...
HotHardware

Microsoft Windows Server Update Service Is Under Attack, What You Need To Know

Windows Server 2025 is currently open to a Remote Code Execution exploit via the Windows Update Service, and at the time of this writing a fix from Microsoft has yet to fully patch the issue. Reports ...
ExtremeTech

Microsoft Rolls Out Emergency Windows Server Update Following WSUS Exploits

Microsoft has released an emergency out-of-band security update for Windows Server to address a probable remote code execution vulnerability tracked as CVE-2025-59287. The issue affects the Windows ...
Infosecurity-magazine.com

Actively Exploited WSUS Bug Added to CISA KEV List

Network defenders have been encouraged to patch a new critical vulnerability in Windows Server Update Services (WSUS) which is being actively exploited. Microsoft issued an out-of-band update to fix ...
Computing

Microsoft rushes out urgent WSUS patch as exploit spreads

Microsoft has released an out-of-band security update to addresses CVE-2025-59287, a critical remote code execution (RCE) flaw in Windows Server Update Services (WSUS). According to researchers, the ...
IT News For Australia Business

Windows Server Update Services bug exploited in the wild

Security researchers at Huntress have discovered active exploitation of a remote code execution (RCE) vulnerability in Windows Server Update Services (WSUS) that Microsoft issued an out-of-band patch ...
Forbes

Microsoft’s 2 Emergency Windows Updates—Which Do You Need?

A confusing October for Microsoft users. Windows 10 has finally reached its end-of-life with hundreds of millions stranded on the retiring OS. Meanwhile, those who have upgraded to Windows 11 have to ...
Forbes

Act Now — Microsoft Issues Emergency Windows Update As Attacks Begin

Windows Server is under attack, act now. Updated October 26 with more technical information regarding the latest Microsoft Windows emergency security update addressing CVE-2025-59287, a critical ...
ITWire

ASD Cyber Security Alert: Critical vulnerability in Microsoft Windows Server Update Service (WSUS), 25 October 2025

The Australian Signals Directorate (ASD), via its Australian Cyber Security Centre (ACSC), has issued a critical alert warning of a vulnerability in Microsoft's Windows Server Update Service, ...
Hosted on MSN

Everybody's warning about critical Windows Server WSUS bug exploits ... but Microsoft's mum

Governments and private security sleuths warned that attackers are already exploiting a critical bug in Microsoft Windows Server Update Services, shortly after ...
Hosted on MSN

Microsoft issues emergency Windows server security patch - update now or risk attack

Microsoft issues emergency patch for a critical WSUS flaw enabling remote code execution CVE-2025-59287 allows unauthenticated attackers to gain SYSTEM privileges without user interaction An ...