What started as 'targeted' attacks may now expand into a full-blown pandemic, since a hacker figured out how to turn hints into a Metasploit exploit module.

Besides patches for Microsoft Excel and Windows Movie Maker, Patch Tuesday includes a warning about zero-day attacks on some users via Internet Explorer 6 and 7.

A new zero-day vulnerability threatens to use Windows help files against users, if they can be convinced to press F1, the traditional key for help. ("It's a trap!")

Quick quiz: Does Microsoft charge users for its Security Essentials software? How do you tell whether software is from Microsoft or from hackers trying to hold your PC for ransom?

Microsoft's update to its anti-piracy tool is now available via Windows Update, the company has confirmed.

But what can users do to disinfect hundreds of thousands of compromised computers worldwide, even as Microsoft suspends nearly 300 rogue Internet domains?

After a week-long investigation, Microsoft bug sleuths claim they've hunted down the cause of multiple reboots and crashes inflicted on Windows XP users.

According to Microsoft, users running pirated copies of its software are at much higher risk of encountering all kinds of malware attacks than users with legitimate copies.

Company confirms that update meant to fix 17-year-old security bug is causing endless reboots and the Blue Screen of Death for some Windows XP users.

In this month’s Patch Tuesday, software giant Microsoft releases one of the largest bundles of security fixes ever, but not one for the latest zero-day.

One of several non-security updates is causing system crashes for some Windows 7 and Windows Server 2008 R2 users. What does Microsoft have for a solution?

Microsoft's February patch drop is a doozy with 13 patches planned for next week's monthly Patch Tuesday updates.

Microsoft warns users to protect themselves from a zero-day bug in Internet Explorer (IE) after it was disclosed Wednesday at the Black Hat hacking and security conference.

Who's at risk from virtual DOS vulnerability?

But will a quick patch keep worried users from jumping ship?

Microsoft shuts down one significant vulnerability in Windows 2000 SP4, while raising the flag on another old flaw -- this time, in Adobe Flash 6.

Tuesday's single patch is rated critical for Windows security--the highest level of Microsoft's four-tier security threat severity scale--only for Windows 2000 Service Pack 4 (SP4).

Blogger spots signs SP1 may be coming soon.

After testing claims by a hacker who claims IIS 6 is vulnerable to a zero-day attack, Microsoft says it's a wild goose chase.

Even resizing or compressing images doesn't stop Microsoft Research-designed PhotoDNA from spotting illegal images.