Windows Server stories

Arctic Wolf says attackers are actively exploiting a critical BeyondTrust vulnerability in self-hosted remote access systems.

Microsoft rolls out fixes for 55 Windows flaws, including six exploited zero-days hitting Shell, MSHTML, Word and key desktop services.

China-linked Warlock ransomware group exploits SmarterMail flaw for admin takeovers, chaining features to gain full Windows control.

Tanium again tops IDC MarketScape rankings, named a Leader for worldwide Windows-focused endpoint management tools for 2025-2026.

Cybersecurity in 2026 pivots from building higher walls to one core question: how fast can organisations recover when attacks inevitably hit?.

Cyber chiefs warn a widening gap between cyber plans and real resilience as boards eye 2026 with only marginal spend increases.

Microsoft fixes a Windows zero-day used in attacks and Office flaws that can execute code when emails are merely received or previewed.

Parallels has launched RAS 21.0, enhancing hybrid cloud management, security, and user experience for distributed workforces with multi-cloud support.

Sentra launches on-premises AI-powered data scanning to enhance security and classification for hybrid and private environments, unifying cloud and local data protection.

Microsoft releases October Patch Tuesday fixing 172 vulnerabilities, including six zero-days and final security updates for Windows 10 and Office 2016-2019.

Cloudhouse unveils Alchemy APS, enabling banks to swiftly modernise by packaging applications independently from legacy infrastructure, cutting costs and risks.

Pentera has added Cl0p ransomware testing to its platform, enabling organisations to safely assess defences on both Windows and Linux systems against this active threat.

Organisations urged to urgently patch Microsoft SharePoint after a critical flaw raises risk of remote code execution when combined with other vulnerabilities.

Microsoft's August 2025 Patch Tuesday fixes 111 vulnerabilities, including nine critical remote code executions and a moderate zero-day flaw.

A design flaw in Windows Server 2025 allows attackers to persist undetected in Active Directory by exploiting managed service account vulnerabilities.

A critical flaw in Windows Server 2025's delegated Managed Service Accounts allows attackers to persistently access and control Active Directory environments, warns Semperis.

Microsoft's July Patch Tuesday addresses 137 vulnerabilities, including 11 critical remote code execution flaws, with no zero-day exploits reported.

Semperis enhances its Directory Services Protector to detect BadSuccessor attacks exploiting dMSAs in Windows Server 2025, before any official patch is available.