WinBuzzer

Microsoft Disables WDS Automatic Deployment Over Security Flaw

Microsoft has blocked hands-free WDS deployment on Windows 11 and Server 2025 to patch CVE-2026-0386, with full enforcement arriving in April 2026.
CSO Online

Storm-2561 targets enterprise VPN users with SEO poisoning, fake clients

The financially motivated group has been active since May 2025, impersonating Fortinet, Ivanti, Cisco, and other vendors to steal corporate credentials.
Microsoft

Storm-2561 uses SEO poisoning to distribute fake VPN clients for credential theft

Storm-2561 uses SEO poisoning to push fake VPN downloads that install signed trojans and steal VPN credentials. Active since 2025, Storm-2561 mimics trusted brands and abuses legitimate services. This ...