News

Patch Tuesday: Microsoft Patches 68 Security Flaws, Including One for Targeted Espionage
Security experts offer their takes on some of the flaws, including a set of vulnerabilities that could enable remote code ...
Microsoft Outlook to block more risky attachments used in attacks
Microsoft announced it will expand the list of blocked attachments in Outlook Web and the new Outlook for Windows starting ...
Over 80,000 Microsoft Entra ID accounts hit by password spraying attacks
The researchers said the campaign most likely started in December 2024. By abusing Microsoft Teams API and Amazon Web Services (AWS) servers located around the world, they were able to launch ...
Windows Report2d
Microsoft to block more file types in Web, New Outlook
Outlook will block .library-ms and .search-ms attachments starting July 2025 to boost security across web and Windows apps.
Microsoft 365 Copilot’s Data Exposed – Hit by Zero-Click Vulnerability
Security researchers at Aim Security discovered "EchoLeak", the first known zero-click artificial intelligence (AI) ...
Security Boulevard7h
Microsoft Data Loss Prevention (DLP): Tips to Protect Your Business Following the Latest Outage
Discover the capabilities of Microsoft 365 Data Loss Prevention (DLP) and understand its limitations. Learn how to prevent unauthorized data access and sharing.
Exclusive: New Microsoft Copilot flaw signals broader risk of AI agents being hacked—’I would be terrified’
Microsoft 365 Copilot, the AI tool built into Microsoft Office workplace applications including Word, Excel, Outlook, ...
ITC.ua2h
Hacking artificial intelligence: Microsoft patches first known zero-click vulnerability in AI assistant
EchoLeak was the first known zero-click vulnerability in an AI assistant. It concerned Microsoft 365 Copilotwhich is integrated into several Office ...
AI Security Alarm: Microsoft Copilot Vulnerability Exposed Sensitive Data via Zero-Click Email Exploit
Researchers uncover a critical AI flaw in Microsoft 365 Copilot, allowing silent data theft through email without any user ...
The Hacker News1d
Over 80,000 Microsoft Entra ID Accounts Targeted Using Open-Source TeamFiltration Tool
A new ATO campaign using TeamFiltration breached 80,000+ Microsoft Entra ID accounts via password spraying, impacting ...
Security Boulevard1d
Microsoft’s Security Update in June of High-Risk Vulnerability Notice for Multiple Products
NSFOCUS CERT detected that Microsoft released a security update patch for June, fixing 67 security issues involving widely used products such as Windows, Microsoft Office, Azure, and Microsoft Visual ...