cybersecurity

A compact but sophisticated campaign tracked as GhostRedirector has infected at least 65 Internet‑facing Windows IIS servers and paired a stealthy native backdoor with an in‑process IIS module to run a covert, profitable SEO fraud operation that pushes third‑party gambling sites while leaving...

With the clock counting down to October 14, 2025, millions of PCs face a stark choice: upgrade to Windows 11, pay for a short-term safety net, or keep running an increasingly risky, unsupported Windows 10—while the debate over hardware compatibility, drivers and sustainability suddenly looks...

ESET’s researchers have uncovered a previously undocumented threat cluster that covertly poisons legitimate IIS-hosted websites to manipulate Google rankings while also planting a stealthy C++ backdoor on Windows servers — a campaign ESET calls GhostRedirector that, according to an internet-wide...

Thanks — I can write the 2,000+ word, in-depth feature article in rich Markdown for WindowsForum.com. Before I start, two quick clarifying questions so I match your needs exactly: 1) Do you want the article to be strictly based on Microsoft’s advisory at the MSRC link you provided, or do you...

Mozilla’s decision to keep Firefox 115 ESR alive for older machines is the latest twist in a multi-stage, pragmatic approach to supporting users who remain on end-of-life operating systems — the Extended Support Release for Firefox 115 will now be maintained for Windows 7, Windows 8/8.1 and...

The City of Montréal has quietly turned a classic municipal pain point—finding timely information on services, schedules and rules—into a 24/7 conversational surface by deploying a virtual agent built with Microsoft Copilot Studio that now answers citizen questions across the city’s public...

ESET Research has uncovered a previously undocumented threat actor it calls GhostRedirector, which in June 2025 was found to have compromised at least 65 Windows servers across multiple countries and deployed two custom tools — a C++ backdoor named Rungan and a native IIS module named Gamshen...

Israel’s reliance on commercial cloud and AI tools has crossed a new threshold: investigative reporting and follow‑up coverage show the Israeli military’s Unit 8200 used a segregated Microsoft Azure environment to store and process huge volumes of intercepted Palestinian phone calls, and that AI...

CISA’s release of “A Shared Vision of Software Bill of Materials (SBOM) for Cybersecurity” marks a deliberate, coordinated push to normalize software composition transparency across governments, suppliers, and operators — a concrete step toward reducing systemic risk in the software supply chain...

August’s security headlines were dominated by a clutch of high-impact flaws — from archive utilities and consumer networking gear to enterprise-grade management consoles and cloud AI services — that together made rapid triage and patching unavoidable for defenders. Background The August 2025...

Chevron Nigeria’s reported migration of more than 3,000 users from Windows 10 to Windows 11 in just 12 weeks — completed 40% faster than previous rollouts and returning a reported 98% user satisfaction rate — is a practical blueprint for large-scale enterprise upgrades in Nigeria and beyond...

Australian Data Centres’ new hires mark a decisive pivot from a single-site, Canberra-focused operator to an ambitious, nationally scaled provider positioning itself for sovereign, AI-ready, and hyperscale workloads. Background / Overview Australian Data Centres (ADC) — a privately owned...

Pittsburgh companies are being asked to treat change not as a periodic challenge but as an ongoing business condition—an expectation now baked into strategy, talent, finance and security decisions—and the practical playbook local leaders are using to stay afloat increasingly mixes rapid...

A Southern California man’s complaint against Microsoft over the planned end of Windows 10 support has crystallized a wider public debate about software lifespan, consumer choice, cybersecurity, and e-waste—and it’s doing so at a moment when millions of PCs still run an operating system that...

Windows users facing the October deadline for Windows 10 support are being offered a realistic, battle-tested alternative in Zorin OS — a Dublin-born Linux distribution that promises to keep older PCs secure, fast and usable for years to come, and which the Irish Times frames as a timely option...

Borderless CS’s launch of IT Hardening Expert Services arrives at a moment when simple misconfigurations and unmaintained defaults are repeatedly exposed as the weakest links in enterprise security, and the firm is pitching a pragmatic, standards-aligned program to shrink attack surfaces across...

Mitsubishi Electric’s MELSEC iQ‑F family of CPU modules has been formally flagged with a network‑accessible vulnerability that allows unauthenticated remote actors to read and write device values — and in some deployments to halt program execution — because the affected product’s Modbus/TCP...

The Indian government’s cybersecurity arm has issued a high-severity alert advising organisations and individuals to urgently address a batch of patched—but still dangerous—vulnerabilities across multiple Microsoft products, including Microsoft Edge (Chromium-based), Windows Server storage...

Anthropic’s new Chrome extension quietly signals the next phase of enterprise AI: assistants that don’t just answer questions but act inside your browser — clicking, filling, and navigating like a human. The company has begun a controlled pilot of Claude for Chrome, inviting 1,000 paying...

Atturra’s rise through Microsoft’s partner ranks has been rapid and highly visible, with multiple outlets reporting that the Australian integrator has secured a significant new recognition in the hybrid and private cloud space — a development that, if fully verified, would strengthen its...