Windows Report

Windows 11 24H2 and 25H2 Updates Break IIS Websites After Patch Tuesday

Microsoft says Windows 11 24H2 and 25H2 updates break IIS websites after October Patch Tuesday. Here’s the fix for ...
HHS

Lazarus Group Targets Microsoft IIS Servers

The highly active, North Korea-linked Lazarus Group is targeting unpatched Microsoft Internet Information Services servers to escalate privileges and distribute malware. See Also: New Attacks.
CSOonline

Millions of websites affected by unpatched flaw in Microsoft IIS 6 web server

A proof-of-concept exploit has been published for an unpatched vulnerability in Microsoft Internet Information Services 6.0, a version of the web server that’s no longer supported but still widely ...

Microsoft fixes Windows bug breaking localhost HTTP connections

Microsoft has fixed a known issue breaking HTTP/2 localhost (127.0.0.1) connections and IIS websites after installing recent Windows security updates.
Ars Technica

Researchers unearth Windows backdoor that’s unusually stealthy

Researchers have discovered a clever piece of malware that stealthily exfiltrates data and executes malicious code from Windows systems by abusing a feature in Microsoft Internet Information Services ...