You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
windows security
About this tag
Windows Security is the central dashboard for Microsoft Defender Antivirus, firewall, and other built-in protection features in Windows 10 and 11. Discussions cover troubleshooting when Windows Security fails to open or shows a blank screen, using the app for virus scans in 2026, and vulnerabilities affecting Windows Defender, such as CVE-2026-50656 (RoguePlanet) which allows local privilege escalation. Other security topics include Microsoft Purview Endpoint DLP updates for Temp and AppData folders, CVE-2026-48192 affecting Mendix Studio Pro on Windows builds, CVE-2026-8711 in NGINX njs, and CVE-2026-13963 in Chrome DevTools. Enterprise AI security services from Cognizant using GPT-5.5 are also covered.
Microsoft is developing a Microsoft Purview Endpoint Data Loss Prevention update, Roadmap ID 562992, that will let organizations detect and protect sensitive files stored in commonly excluded Windows folders such as Temp and AppData, with worldwide general availability currently scheduled for...
Siemens and CISA disclosed on July 7, 2026, that Mendix Studio Pro versions before 11.12, plus specific 10.24 and 11.6 maintenance lines, are affected by CVE-2026-48192, a project-file parsing flaw that can execute code during the local build pipeline. The advisory, republished by CISA from...
CVE-2026-8711 affects NGINX JavaScript njs, not every NGINX deployment. The vulnerable range is njs 0.9.4 through 0.9.8, and the fixed version is njs 0.9.9 or later. Treat it as urgent when all of these are true: NGINX imports njs code with js_import, the deployment uses js_fetch_proxy, that...
Fix Windows Security Not Opening or Showing a Blank Screen in Windows 10/11
Difficulty: Intermediate | Time Required: 15 minutes
Windows Security is the central dashboard for Microsoft Defender Antivirus, firewall status, app and browser protection, device security, and other built-in protection...
Microsoft disclosed CVE-2026-50656 in June 2026, confirming that a Windows Defender flaw publicly called RoguePlanet can let a local standard Windows user escalate to SYSTEM privileges while the company prepares a security update with no release date yet announced. The immediate story is a...
In 2026, the safest way to check a Windows PC for viruses is to start in the built-in Windows Security app, run a Quick scan with Microsoft Defender Antivirus, update security intelligence, then escalate to Full, Custom, Offline, or second-opinion scanners only when the evidence justifies it...
On July 2, 2026, Cognizant said it is applying OpenAI’s GPT-5.5 with Trusted Access for Cyber through its Frontier AI Cyber Defense services to help enterprise customers move from vulnerability discovery to validated, tested software fixes. The announcement, carried by Cognizant’s newsroom and...
Google Chrome before version 150.0.7871.47 contained CVE-2026-13963, a medium-severity DevTools flaw disclosed on June 30, 2026, that could let a remote attacker leak cross-origin data from a crafted HTML page after persuading a user to perform specific interface gestures. The bug is not the...
Google Chrome CVE-2026-14049, disclosed by Chrome and published in NVD on June 30, 2026, is a low-severity GPU information-disclosure flaw fixed in Chrome 150.0.7871.47 that could expose process memory after an attacker had already compromised the renderer through a crafted HTML page. The...
Google’s Chrome 150.0.7871.47 desktop update, published June 30, 2026, fixes CVE-2026-14053, a low-severity Chromium Extensions flaw that could let an attacker leak cross-origin data after first compromising the renderer process. That is the plain version; the more useful version is that this is...
Google Chrome for Windows before version 150.0.7871.47 is affected by CVE-2026-14113, a use-after-free flaw in Chrome’s Updater component that could let an attacker who already compromised the renderer process attempt a sandbox escape through a crafted HTML page. That is the dry database...
Google Chrome before version 150.0.7871.47 contains CVE-2026-14135, a low-severity Chromium Network flaw disclosed June 30, 2026, that could let a remote attacker with an already-compromised renderer process spoof browser UI through a crafted HTML page. That wording sounds almost reassuring...
CVE-2026-14138 is a Windows-only Google Chrome WebAppInstalls flaw disclosed on June 30, 2026, fixed in Chrome 150.0.7871.47, that allowed UI spoofing when a remote attacker persuaded a user to perform specific gestures on a crafted HTML page. The bug is not a drive-by code execution emergency...
Google fixed CVE-2026-13800 on June 30, 2026, in Chrome 150.0.7871.47 for Windows, closing a high-severity Updater flaw that could let a local attacker escalate to operating-system privileges by using a malicious file on vulnerable Chrome installations. The short version is simple: this is not a...
Google Chrome before version 150.0.7871.47 contains CVE-2026-13798, a high-severity heap buffer overflow in its Chromecast component that Google says could let an attacker who already compromised the renderer escape the browser sandbox through a crafted HTML page. That wording is dry, but the...
CVE-2026-58284 is a Microsoft Edge Chromium-based remote code execution vulnerability published by Microsoft’s Security Response Center on July 3, 2026, affecting Edge versions earlier than 150.0.4078.48 and carrying a CVSS 3.1 score reported by vulnerability aggregators as 8.3. The important...
Google Chrome for Windows before version 150.0.7871.47 is affected by CVE-2026-14018, a use-after-free flaw in the Chrome Updater that Google says can let a local attacker escalate privileges at the operating-system level by using a malicious file. The vulnerability landed in the National...
Google Chrome before 150.0.7871.47 contains CVE-2026-14041, a low-severity Chromium Serial component flaw disclosed on June 30, 2026, in which insufficient policy enforcement could let a remote attacker escalate privileges through a crafted HTML page if user interaction occurs. The vulnerability...
Google Chrome CVE-2026-14065 was published by NVD on June 30, 2026, and describes a PageInfo input-validation flaw fixed before Chrome 150.0.7871.47 that could let an attacker with an already-compromised renderer bypass navigation restrictions through a crafted HTML page. That is the plain...
Google Chrome for Windows before version 150.0.7871.47 contains CVE-2026-14094, a use-after-free flaw in the browser’s installer that could let a local attacker escalate privileges at the operating-system level by using a malicious file. The vulnerability was published by NVD on June 30, 2026...