Track the public Microsoft Defender RoguePlanet zero-day report, keep June 2026 Windows updates and Defender updates current, and harden admin workstations safely.
Microsoft published the June 2026 Security Updates on June 9. Plan Windows, Server, IIS, RDS, Hyper-V, domain controller, and admin workstation patching with verification.
CISA added Chrome CVE-2026-11645 to KEV on June 9, 2026. Patch Chrome and Chromium-based admin browsers, restart, verify versions, and review risky sessions.
CISA added SolarWinds Serv-U CVE-2026-28318 to KEV on June 5, 2026. Update to Serv-U 15.5.4 Hotfix 1 or the current fixed SolarWinds build.
Windows Delivery Optimization and DoSvc can use your upload bandwidth for update sharing. Here is how to stop it now and lock it down permanently.
YellowKey CVE-2026-45585 is a Windows BitLocker security feature bypass affecting Windows 11 and Windows Server 2025. Check WinRE, BitLocker, and patch plans now.
MiniPlasma is a newly public Windows local privilege escalation issue tied to cldflt.sys and CVE-2020-17103. Here is what admins should monitor while Microsoft investigates.
CISA KEV patch guide for Microsoft Defender CVE-2026-41091 and CVE-2026-45498 on Windows Server, hosting, RDS, Hyper-V, and admin machines.
Windows Secure Boot certificates from 2011 begin expiring in June 2026. Patch, reboot, verify, and stage server rollout safely.
Install the June 2026 Exchange Server updates for CVE-2026-42897, keep mitigations in place during rollout, and verify OWA, mail flow, logs, and backups.
