Following the release of a BitLocker zero-day security bypass by a disgruntled hacker, Microsoft has now offered mitigation advice until a patch is available.

Microsoft's May Patch Tuesday looked quiet. Since then, there's been an unpatched Exchange CVE, three Defender flaws, and a ...

Microsoft Exchange users are urged to mitigate a zero-day vulnerability that CISA has confirmed is under active exploitation.

Microsoft has announced mitigations for CVE-2026-45585, a BitLocker bypass triggered via FsTx in Windows Recovery.

Microsoft rushes to mitigate the new “YellowKey” flaw that may bypass BitLocker protections and expose encrypted Windows ...

Microsoft has disclosed that a privilege escalation and a denial-of-service flaw in Defender has come under active ...

Microsoft pushed out-of-band patches on May 21, 2026, for two actively exploited Windows Defender zero-days — one that lets a ...

Microsoft says it is considering a patch for a zero-day vulnerability, dubbed YellowKey, that allows attackers with access to ...

Microsoft responds to Windows 11 encryption bypass vulnerability with new mitigation.

The YellowKey BitLocker exploit release has triggered another public clash between Microsoft and Nightmare-Eclipse.

Attackers are already actively exploiting two vulnerabilities for which Microsoft issued patches on Nov. 12 as part of its monthly security update. And they could soon begin targeting two other ...