Hackers exploit auth bypass in Service Finder WordPress theme

Threat actors are actively exploiting a critical vulnerability in the Service Finder WordPress theme that allows them to bypass authentication and log in as administrators.

Microsoft Cracks Down on Local Accounts in Windows 11, But Did It Close All Workarounds?

In the latest Windows 11 Dev build, Microsoft has removed all "known mechanisms" that allowed users to create a local account during the setup process.

New FileFix attack uses cache smuggling to evade security software

A new variant of the FileFix social engineering attack uses cache smuggling to secretly download a malicious ZIP archive onto a victim's system and bypassing security software.
Redmond Magazine

Microsoft Ends Local Account Workarounds in Latest Windows 11 Build

Microsoft's latest Insider Preview, Build 26220.6772, introduces a significant policy change: removal of known workarounds to skip Microsoft Account setup during Windows 11 installation (OOBE).
ExtremeTech on MSN

Microsoft Closes Local Account Loopholes in Latest Windows 11 Preview Build

Microsoft is tightening restrictions around creating local accounts during Windows 11 setup, making it harder for users to avoid signing into a Microsoft account. In the latest Windows Insider Dev ...