TheWindowsUpdate.com

Microsoft Incident Response – Detection and Response Team (DART) researchers uncovered a new backdoor that is notable for its novel use of the OpenAI Assistants Application Programming Interface (API) as a mechanism for command-and-control (C2) communications. Instead of relying on more traditional methods, the threat actor behind this backdoor abuses OpenAI as a C2 channel as a way to stealthily communicate and orchestrate malicious activities within the compromised environment. To do this, a component of the backdoor uses the OpenAI Assistants API as a storage or relay mechanism to fetch commands and run tasks for the threat actor.

The post SesameOp: Novel backdoor uses OpenAI Assistants API for command and control appeared first on Microsoft Security Blog.

Continue reading SesameOp: Novel backdoor uses OpenAI Assistants API for command and control→

Hello Windows Insiders, today we are releasing Windows 11 Insider Preview Build 26220.7051 (KB5067115) to the Dev & Beta Channels.

Starting today, we are beginning to offer the same Dev Channel updates based on

The post Announcing Windows 11 Insider Preview Build 26220.7051 (Dev & Beta Channels) appeared first on Windows Blog.

Continue reading Announcing Windows 11 Insider Preview Build 26220.7051 (Dev & Beta Channels)→

Today’s Windows 11 Insider Preview Build (26220.7051) for Dev & Beta Channels begins gradual rollout of shared audio (preview), a new experience being previewed that allows your audio to be shared between two separate headphones, s

The post Extending Bluetooth® LE Audio on Windows 11 with shared audio (preview) appeared first on Windows Blog.

Continue reading Extending Bluetooth® LE Audio on Windows 11 with shared audio (preview)→

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information. Continue reading Chromium: CVE-2025-12441 Out of bounds read in V8→

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information. Continue reading Chromium: CVE-2025-12441 Out of bounds read in V8→

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information. Continue reading Chromium: CVE-2025-12440 Inappropriate implementation in Autofill→

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information. Continue reading Chromium: CVE-2025-12439 Inappropriate implementation in App-Bound Encryption→

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information. Continue reading Chromium: CVE-2025-12438 Use after free in Ozone→