As well as Coreutils, the Build 2026 developer conference also saw Microsoft announce WSL containers CLI and API to deploy ...

I switched to WSL 2 and finally stopped feeling locked into Windows — here's why that changes everything.

A legacy Windows scripting utility tied to Internet Explorer is still being used in modern malware campaigns, researchers say.

Threat actors likely associated with the Democratic People's Republic of Korea (DPRK) have been observed using GitHub as command-and-control (C2) infrastructure in multi-stage attacks targeting ...

A new campaign has leveraged the ClickFix social engineering tactic as a way to distribute a previously undocumented malware loader referred to as DeepLoad. "It likely uses AI-assisted obfuscation and ...

Threat actors are now abusing DNS queries as part of ClickFix social engineering attacks to deliver malware, making this the first known use of DNS as a channel in these campaigns. ClickFix attacks ...

In January 2026, Microsoft Defender Experts identified a new evolution in the ongoing ClickFix campaign. This updated tactic deliberately crashes victims’ browsers and then attempts to lure users into ...

Infostealer threats are rapidly expanding beyond traditional Windows-focused campaigns, increasingly targeting macOS environments, leveraging cross-platform languages such as Python, and abusing ...

Microsoft told Windows Latest that it disabled the File Explorer Preview pane in Windows 11 25H2 and 24H2 for internet downloaded files. This causes “The file you are attempting to preview could harm ...