Threat Post

Windows ‘Deletebug’ Zero-Day Allows Privilege Escalation, Destruction

The unpatched flaw allows an attacker to delete any kind of file on a victim machine, including system data. A proof-of-concept exploit for a Windows zero-day that works on fully patched Windows 10 ...
CSOonline

Windows flaw exploited as zero-day by more groups than previously thought

Researchers found evidence that the CVE-2025-29824 privilege escalation flaw patched by Microsoft in April was known and used by the Play ransomware gang in addition to a group that Microsoft tracked ...
Bleeping Computer

Black Basta ransomware gang linked to Windows zero-day attacks

The Black Basta ransomware operation is suspected of exploiting a Windows privilege escalation vulnerability (CVE-2024-26169) as a zero-day before a fix was made ...
Hosted on MSN

This local privilege escalation vulnerability in iTunes could spell big trouble for Windows users

Cyfirma Research recently discovered a serious security vulnerability affecting users of iTunes on Windows systems. This local privilege escalation vulnerability, classified as CVE-2024-44193, allows ...