MUO on MSN

The Windows security feature most people ignore is the one I check first on every PC

And it's almost always disabled.
Bleeping Computer

Microsoft warns of new Defender zero-days exploited in attacks

Update May 25, 04:19 EDT: CVE-2026-41091 is a Microsoft Defender local privilege escalation (LPE) flaw known as RedSun, and CVE-2026-45498 is known as UnDefend, a security flaw that can be exploited ...
TechRepublic

Microsoft Defender Flaws Exploited on Windows, Two Left Unpatched

Although the team with Microsoft moved swiftly to patch the BlueHammer vulnerability, other exploits still threaten Microsoft Defender and Windows users. No less than ...