Microsoft quietly tightens Windows Server 2025 security baseline with key defaults flipped and legacy risks shut down.

Microsoft Edge is removing its custom primary password option, automatically transitioning users to Windows Hello.

Windows 11 KB5077230 adds support for peripheral fingerprint sensors, boosting Windows Hello sign-in security and making ...

Microsoft fixes CVE-2026-26119, an 8.8 CVSS privilege escalation bug in Windows Admin Center that could allow network-based user rights takeover.

February 2026 Patch Tuesday restricts Windows credential autofill to fix a Windows Hello input injection flaw (CVE-2026-20804 ...

Microsoft announced that it will disable the 30-year-old NTLM authentication protocol by default in upcoming Windows releases due to security vulnerabilities that expose organizations to cyberattacks.

Microsoft released KB5077793 to fix Azure Virtual Desktop and Windows 365 authentication failures. January 2026 security update KB5073379 caused credential prompt failures across multiple Windows ...

Google provides assistance in cracking NTLM hashes, provoking Microsoft and also admins who are concerned about the security of their Windows networks. Microsoft's authentication method NTLM is a ...

Microsoft is officially moving to shut the door on RC4 - a legacy cryptographic cipher that has quietly persisted inside Windows authentication environments for decades - and forcing organizations to ...

Microsoft is killing off an obsolete and vulnerable encryption cipher that Windows has supported by default for 26 years following more than a decade of devastating hacks that exploited it and ...

A critical zero-day vulnerability in Windows servers running the Kerberos authentication system, first disclosed in May, has now been patched by Microsoft, but must be given high priority by admins ...