The Hacker News

Microsoft Confirms Active Exploitation of Windows Shell CVE-2026-32202

CVE-2026-32202 actively exploited after April 27 advisory fix, exposing NTLMv2 hashes via zero-click SMB authentication.
Windows Report

CISA Orders Urgent Patch for Actively Exploited Windows Shell Vulnerability

CISA orders urgent patching of a Windows Shell flaw actively exploited in zero-click attacks. Federal agencies must update by ...
SecurityWeek

Incomplete Windows Patch Opens Door to Zero-Click Attacks

Incomplete patch for a Windows SmartScreen and Windows Shell security prompts bypass created a new bug enabling zero-click ...

Check and Update Windows Secure Boot Certificates expiring in 2026

Secure Boot Certificates are set to expire soon. This guide shows how to check and update them and covers a roadmap for ...

Windows Shell vulnerability is being attacked

In February, Microsoft closed a Windows Shell vulnerability, but incompletely. Attacks have now been discovered. A patch ...

Microsoft Changes Windows Security After 15 Years—Update By ‘End Of April’

This has never happened before. Microsoft is expiring the authentication that protects Windows PCs from threats each time ...
PCQuest

Microsoft warns Windows Shell flaw is being exploited to expose credentials

Microsoft’s Windows Shell flaw CVE-2026-32202 is under attack. See how one shortcut file can expose NTLM credentials and ...

Microsoft's latest Windows update now confirms if your PC is Secure Boot-protected - how it works

Microsoft's latest Windows update now confirms if your PC is Secure Boot-protected - how it works ...