Microsoft Defender Bug Triggers False Malware Alerts for DigiCert Certificates

Microsoft fixed a Defender false positive that flagged legitimate DigiCert certificates as malware, disrupting Windows trust ...
eWeek

Microsoft Defender Flaws Exploited on Windows, Two Left Unpatched

Although the team with Microsoft moved swiftly to patch the BlueHammer vulnerability, other exploits still threaten Microsoft ...

Microsoft Issues Massive Windows Patch for 160+ Bugs, Including Two Zero-Days

Microsoft’s April 2026 Patch Tuesday fixes 165 vulnerabilities, including two zero-days, in one of the company’s largest monthly security updates.
Hosted on MSN

CISA sets May 6 deadline for BlueHammer patch as Microsoft adds Secure Boot alerts

The US Cybersecurity and Infrastructure Security Agency has ordered federal agencies to patch the actively exploited 'BlueHammer' Microsoft Defender flaw by May 6, while Microsoft’s April Windows 11 ...
Bleeping Computer

CISA orders feds to patch BlueHammer flaw exploited as zero-day

CISA has given U.S. government agencies two weeks to secure their Windows systems against a Microsoft Defender privilege escalation vulnerability that has been exploited in zero-day attacks. Tracked ...
CSOonline

Another Microsoft Defender privilege escalation bug emerges days after patch

New PoC shows how Microsoft Defender can be tricked into rewriting malicious files into protected locations, enabling SYSTEM-level privilege escalation on fully patched Windows systems. Days after ...
Redmond Magazine

Microsoft Issues Second Biggest Patch Tuesday Ever in April

Microsoft April 2026 Patch Tuesday fixed 163 CVEs, marking its second-largest security update. Three zero-day vulnerabilities impacted SharePoint, Chromium-based Edge workflows and Microsoft Defender.