Chinese hackers target European diplomats with Windows zero-day flaw

Mustang Panda used CVE-2025-9491 to target European diplomats via phishing and malicious .LNK files Exploited Windows Shell ...

Microsoft: Patch for WSUS flaw disabled Windows Server hotpatching

An out-of-band (OOB) security update that patches an actively exploited Windows Server Update Service (WSUS) vulnerability has broken hotpatching on some Windows Server 2025 devices.