security research

For the global cybersecurity community, few events attract the anticipation—or the unnerving revelations—like the renowned Pwn2Own contest. Now held for the first time in Berlin under the stewardship of Trend Micro’s Zero Day Initiative (ZDI), the latest installment of Pwn2Own has delivered not...

The first day of Pwn2Own Berlin 2025 brought the cybersecurity spotlight back to some of the world’s most critical software platforms, revealing a dynamic and, at times, unsettling glimpse into the vulnerabilities that underscore the modern IT ecosystem. On this opening day alone, researchers...

The inaugural day of Pwn2Own Berlin 2025, hosted by the Zero Day Initiative (ZDI), showcased a series of groundbreaking exploits across various categories, including the debut of the Artificial Intelligence (AI) category. The event awarded a total of $260,000 to participating researchers, with...

When the doors opened on the first day of Pwn2Own Berlin 2025, few could have predicted just how quickly and decisively some of the world’s most widely used enterprise operating systems would fall to the creative might of leading security researchers. Within hours, Windows 11 and Red Hat...

A sophisticated memory safety flaw has recently come to light in the Windows ecosystem, specifically within the heart of its graphical subsystem. Security researchers, industry analysts, and Microsoft itself have issued advisories regarding CVE-2025-30388, a heap-based buffer overflow that...

Windows continues to underpin countless critical infrastructures, enterprise networks, and consumer devices, making its kernel drivers a perennial target for security researchers and adversaries alike. The latest vulnerability in the spotlight, CVE-2025-29829, affects the Windows Trusted Runtime...

In 2005, an unusual technical anomaly emerged: playing Janet Jackson's 1989 hit "Rhythm Nation" could crash certain models of laptop computers. This phenomenon was first detailed by Microsoft software engineer Raymond Chen, who recounted that a major computer manufacturer discovered that the...

A critical security flaw in macOS, identified as CVE-2025-31191, was publicly detailed by Microsoft in May 2025, highlighting the ongoing contest between sophisticated attackers and platform defenders in securing endpoint computing. This vulnerability enables attackers to bypass the macOS App...

The Mysterious “inetpub” Folder: An Unexpected Windows 11 Quirk Windows 11 users have recently encountered an unexpected twist following the cumulative update KB5055523—a seemingly innocuous yet puzzling folder named “inetpub” appearing on the C drive. This odd discovery, highlighted by multiple...

Microsoft’s recent April 2025 patch cycle for Windows 10 and Windows 11 has sparked a wave of both intrigue and concern across the IT community due to the unexpected appearance of the “inetpub” folder on users’ system drives, usually the C: drive. This folder, historically associated with...

Microsoft's April 2025 cumulative Windows update, notably identified as KB5055523 for Windows 11 24H2, has stirred significant discussion in the tech community due to an unexpected and somewhat mysterious change: the automatic creation of an empty folder named "inetpub" on the system drive...

Microsoft's recent April 2025 patch for Windows introduced a curious and controversial change that has IT administrators and security experts buzzing—a mysterious "inetpub" folder appearing by default on systems, including those not using Internet Information Services (IIS). Far from a mere...

Microsoft's recent April 2025 Patch Tuesday update for Windows 11—specifically update KB5055523—introduced an unexpected yet purposeful change that has stirred curiosity and concern among users and IT professionals alike: the mysterious creation of an empty folder named inetpub on the system...

The inetpub folder has recently become the center of an intriguing and somewhat ironic security controversy in Windows 11, particularly after the April 2025 cumulative update. This seemingly innocuous and empty system folder, traditionally associated with Microsoft's Internet Information...

Here is a summary of the issue described in the article from The Register: In April 2025, Microsoft quietly reintroduced the c:\inetpub folder to Windows systems as a mitigation for CVE-2025-21204, an elevation-of-privileges flaw within Windows Process Activation. Instead of patching the code...

Microsoft’s Mystery inetpub Folder: When the Fix Becomes a Flaw At the heart of the latest chapter in Windows patching is a familiar folder with an unfamiliar twist—c:\inetpub. The recent kerfuffle that has swept Windows administrators into a maelstrom of head-scratching and risk analysis...

Microsoft’s bounty program just got a major upgrade, and if you’ve ever fancied yourself an AI bug-hunting bounty hunter, now might be the time to dust off your digital magnifying glass—and maybe start practicing how you'll spend a cool $30,000. Yes, you read that right: Microsoft is dangling...

Tucked away among the countless cryptic folders of a typical Windows 11 installation lies a new arrival – the now-infamous ‘inetpub’ directory, a seemingly innocuous feature rolled out with the April 2025 security update. But if Windows update history is anything to go by, “innocuous” is just a...

Windows users stared at their C: drives in dismay after April 2025’s Patch Tuesday, only to find a mysterious, empty new folder named “inetpub” lurking at the root of their systems—like some digital tumbleweed blown in by a particularly secretive Microsoft update. The Folder That Raised...

Let’s banish the illusion right away—no, your computer hasn’t suddenly morphed into a cheese grater with 587 holes because of last year’s Windows vulnerabilities tally. But if you’re feeling a draft, it might just be a breeze of cybersecurity news blowing through your inbox, because 2024 was a...