Tag: Microsoft

Microsoft is changing the default behavior in Windows Autopatch so that hotpatch security updates are enabled automatically for eligible devices managed through Microsoft Intune or the Microsoft Graph API starting with the May 2026 Windows security update. Windows Autopatch is a Microsoft-managed service that automates updates for Windows and Office. It also lets IT administrators…

Microsoft to enable Windows hotpatch security updates by default

March 10, 2026

Microsoft will turn on hotpatch security updates by default for all eligible Windows devices managed through Microsoft Intune and the Microsoft Graph API, beginning with the May 2026 Windows security update. […]

Microsoft Teams phishing targets employees with backdoors

March 9, 2026

Hackers contacted employees at financial and healthcare organizations over Microsoft Teams to trick them into granting remote access through Quick Assist and deploy a new piece of malware called A0Backdoor. […]

Microsoft Teams will tag third-party bots trying to join meetings

March 9, 2026

Microsoft says Teams will soon automatically tag third-party bots in lobbies, allowing organizers to control whether they can join meetings. […]

M365 Copilot gets its own version of Claude Cowork

March 9, 2026

Microsoft has added agentic AI capabilities to Microsoft 365 Copilot to improve its usefulness for office workers — including its own version of Anthropic’s Claude Cowork. Microsoft’s AI assistant has, so far, failed to attract significant business demand since launching more than two years ago, at least compared to its other products. Only 3% of…

Microsoft still working to fix Windows Explorer white flashes

March 9, 2026

Microsoft has confirmed that it’s still working to fully address a known issue that causes bright white flashes when opening the File Explorer on some Windows 11 systems. […]

Microsoft wants you to ‘hire’ its AI agents

March 9, 2026

It looks like Microsoft will soon be releasing a new SKU, Microsoft 365 E7, according to my friend — and Microsoft expert’s expert — Mary Jo Foley. As she described it last week, the release “will be key to Microsoft’s plan to license ‘agentic’ workers like human employees.” Oh boy. Suddenly, I can see millions…

Microsoft: Hackers abusing AI at every stage of cyberattacks

March 7, 2026

Microsoft says threat actors are increasingly using artificial intelligence in their operations to accelerate attacks, scale malicious activity, and lower technical barriers across all aspects of a cyberattack. […]

Microsoft 365 Backup to add file-level restore for faster recovery

March 6, 2026

Microsoft will soon begin rolling out a significant upgrade to Microsoft 365 Backup to speed up recovery by allowing administrators to restore individual files and folders. […]

Microsoft working on Teams feature to help admins block unauthorized bots

March 6, 2026

Microsoft plans to add a new Teams feature that lets meeting admins identify and control third-party bots before they join. According to the Microsoft 365 Roadmap, the feature is scheduled to begin rolling out in May 2026 on Desktop, Mac, Linux, iOS, and Android versions of Microsoft Teams. Bots that are part of a company’s…

Microsoft warns of ClickFix campaign exploiting Windows Terminal to deliver Lumma Stealer

March 6, 2026

Microsoft warns of ClickFix campaign using Windows Terminal to deliver Lumma Stealer via social engineering attacks. Microsoft revealed a new ClickFix campaign where attackers exploit Windows Terminal to run a complex attack chain, ultimately deploying Lumma Stealer malware. The campaign uses social engineering to trick users into executing malicious commands, highlighting growing risks to Windows…

Microsoft Reveals ClickFix Campaign Using Windows Terminal to Deploy Lumma Stealer

March 6, 2026

Microsoft on Thursday disclosed details of a new widespread ClickFix social engineering campaign that has leveraged the Windows Terminal app as a way to activate a sophisticated attack chain and deploy the Lumma Stealer malware. The activity, observed in February 2026, makes use of the terminal emulator program instead of instructing users to launch the…

Bing AI promoted fake OpenClaw GitHub repo pushing info-stealing malware

March 5, 2026

Fake OpenClaw installers hosted in GitHub repositories and promoted by Microsoft Bing’s AI-enhanced search feature instructed users to run commands that deployed information stealers and proxy malware. […]

Windows 10 KB5075039 update fixes broken Recovery Environment

March 4, 2026

Microsoft has released the KB5075039 Windows Recovery Environment update for Windows 10 to fix a long-standing issue that prevented some users from accessing the Recovery environment. […]

Google Workspace vs. Microsoft 365: What’s the best office suite for business?

March 4, 2026

Once upon a time, Microsoft Office ruled the business world. By the late ’90s and early 2000s, Microsoft’s office suite had brushed aside rivals such as WordPerfect Office and Lotus SmartSuite, and there was no competition on the horizon. Then in 2006 Google came along with Google Docs & Spreadsheets, a collaborative online word processing and…

OAuth phishers make ‘check where the link points’ advice ineffective

March 3, 2026

Microsoft has warned that phishers are exploiting a built-in behavior of the OAuth authentication protocol to redirect victims to malware, using links that point to legitimate identity provider domains such as Microsoft Entra ID and Google Workspace. The links look safe but ultimately lead somewhere that isn’t. “OAuth includes a legitimate feature that allows identity…

OAuth phishers make ‘check where the link points’ advice ineffective

March 3, 2026

Phishing campaign exploits OAuth redirection to bypass defenses

March 3, 2026

Microsoft researchers warn that threat actors abuse OAuth redirects to target government users and deliver malware. Microsoft has warned of phishing campaigns targeting government and public-sector organizations by abusing OAuth URL redirection. Instead of stealing credentials or exploiting software flaws, attackers leverage OAuth’s legitimate by-design behavior to bypass email and browser defenses. The tactic redirects…

Microsoft Warns OAuth Redirect Abuse Delivers Malware to Government Targets

March 3, 2026

Microsoft on Monday warned of phishing campaigns that employ phishing emails and OAuth URL redirection mechanisms to bypass conventional phishing defenses implemented in email and browsers. The activity, the company said, targets government and public-sector organizations with the end goal of redirecting victims to attacker-controlled infrastructure without stealing their tokens. It described

Windows 11 Insider Previews: What’s in the latest build?

March 2, 2026

Windows 11 25H2 has been released, but behind the scenes, Microsoft is constantly working to improve the newest version of Windows. The company frequently rolls out public preview builds to members of its Windows Insider Program, allowing them to test out — and help shape — upcoming features. Skip to the latest builds The Windows…

Russia-linked APT28 exploited MSHTML zero-day CVE-2026-21513 before patch

March 2, 2026

Russia-linked APT28 reportedly exploited MSHTML zero-day CVE-2026-21513 before Microsoft patched it, a high-severity bypass flaw. Akamai reports that Russia-linked APT28 may have exploited CVE-2026-21513 CVSS score of 8.8), a high-severity MSHTML vulnerability (CVSS 8.8), before Microsoft patched it in February 2026. The vulnerability is an Internet Explorer security control bypass that can lead to code…

APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

March 2, 2026

A recently disclosed security flaw patched by Microsoft may have been exploited by the Russia-linked state-sponsored threat actor known as APT28, according to new findings from Akamai. The vulnerability in question is CVE-2026-21513 (CVSS score: 8.8), a high-severity security feature bypass affecting the MSHTML Framework. “Protection mechanism failure in MSHTML Framework allows an unauthorized

Microsoft testing Windows 11 batch file security improvements

February 27, 2026

Microsoft is rolling out new Windows 11 Insider Preview builds that improve security and performance during batch file or CMD script execution. […]

Microsoft brings ASUS and Dell into the Windows 365 Cloud PC strategy

February 27, 2026

Microsoft is adding two new Windows 365 Cloud PC devices, the ASUS NUC 16 for Windows 365 and the Dell Pro Desktop for Windows 365, expanding hardware options for its cloud-based desktop service. Both devices are scheduled for release in the third quarter of 2026, with distribution varying by region and model. The two devices…

Microsoft expands Windows restore to more enterprise devices

February 26, 2026

Microsoft now allows more enterprise users to restore their personal settings and Microsoft Store apps from a previous Windows 11 device. […]

Fake Next.js job interview tests backdoor developer’s devices

February 25, 2026

The Microsoft Defender team has discovered a coordinated campaign targeting software developers through malicious repositories posing as legitimate Next.js projects and technical assessment materials, including recruiting coding tests. […]

Microsoft warns of job‑themed repo lures targeting developers with multi‑stage backdoors

February 25, 2026

Microsoft says it has uncovered a coordinated campaign targeting software developers through malicious repositories posing as legitimate Next.js projects and technical assessments. The campaign employs carefully crafted lures to blend into routine workflows, such as cloning repositories, opening projects, and running builds, thereby allowing the malicious code to execute undetected. Telemetry collected during an incident…

A Practical Guide to Microsoft Copilot for MSPs

February 25, 2026

If you’re an MSP considering adding Microsoft Copilot to your portfolio in 2026, it’s worth being deliberate about how you package and position it for clients. For many organizations, pitching AI as a novel “productivity booster” is no longer enough. Customers increasingly expect the conversation to shift from experimentation to execution, anchored in defined use…

Windows 11 KB5077241 update improves BitLocker, adds Sysmon tool

February 25, 2026

Microsoft has released the KB5077241 optional cumulative update for Windows 11, which comes with 29 changes, including improvements to BitLocker, a new network speed test tool, and native System Monitor (Sysmon) functionality. […]

Microsoft adds domain libraries and Copilot integration to the quantum development kit

February 25, 2026

The Microsoft Quantum Development Kit (QDK) is an open-source toolkit that runs on laptops and in common development environments. It includes code, simulators, libraries, and workflows that work with Visual Studio Code and GitHub Copilot. Integration with these tools gives developers features for writing, testing, debugging, and submitting quantum code. The QDK supports multiple programming…

Microsoft adds Copilot data controls to all storage locations

February 24, 2026

Microsoft is expanding data loss prevention (DLP) controls to block the Microsoft 365 Copilot AI assistant from processing confidential Word, Excel, and PowerPoint documents, regardless of their location. […]

Microsoft expands Sovereign Cloud security with governance, local productivity and AI

February 24, 2026

Microsoft expands Microsoft Sovereign Cloud with new disconnected and AI capabilities that help organizations run critical infrastructure, productivity services and large AI models inside sovereign boundaries while keeping governance and operational continuity across connected and disconnected environments. Sovereign Private Cloud unifies Azure Local, Microsoft 365 Local and Foundry Local, bringing infrastructure, productivity and support for…

Microsoft undercuts its kinder, gentler image with big ICE contract

February 24, 2026

For at least the last six or so years, Microsoft has worked hard to portray itself as a kinder, gentler tech company, a stark contrast to other Big Tech behemoths like Meta, Google, Amazon, and — since Donald J. Trump’s election to the presidency in 2024 — Apple. Even The New York Times has noted…

Microsoft says bug in classic Outlook hides the mouse pointer

February 23, 2026

Microsoft is investigating a known issue that causes the mouse pointer to disappear in the classic Outlook desktop email client for some users. […]

‘God-Like’ Attack Machines: AI Agents Ignore Security Policies

February 20, 2026

Microsoft Copilot recently summarized and leaked user emails; but any AI agent will go above and beyond to complete assigned tasks, even breaking through their carefully designed guardrails.

Microsoft 365 Copilot Bug Circumvented DLP Controls

February 20, 2026

Microsoft has confirmed a bug in Microsoft 365 Copilot Chat that allowed the AI assistant to summarize emails labeled as confidential, even when sensitivity labels and data loss prevention (DLP) policies were in place. The issue, first identified on Jan. 21, 2026 and tracked internally as CW1226324, impacted Copilot’s “work tab” chat feature. “Without proper…

Microsoft Patches CVE-2026-26119 Privilege Escalation in Windows Admin Center

February 19, 2026

Microsoft has disclosed a now-patched security flaw in Windows Admin Center that could allow an attacker to escalate their privileges. Windows Admin Center is a locally deployed, browser-based management tool set that lets users manage their Windows Clients, Servers, and Clusters without the need for connecting to the cloud. The high-severity vulnerability, tracked as CVE-2026-26119,…

Microsoft reveals critical Windows Admin Center vulnerability (CVE-2026-26119)

February 19, 2026

Microsoft has disclosed a privilege-escalation vulnerability in Windows Admin Center (WAC), a browser-based platform widely used by IT administrators and infrastructure teams to manage Windows clients, servers, clusters, Hyper-V hosts and virtual machines, as well as Active Directory-joined systems. Although the issue was patched in early December 2025 with the release of Windows Admin Center…

Flaws in Popular Software Development App Extensions Allow Data Exfiltration

February 19, 2026

Four serious new vulnerabilities affect Microsoft Visual Studio Code, Cursor and Windsurf extensions, three of which remain unpatched

Microsoft signals breakthrough in data storage that can last for generations

February 19, 2026

Microsoft announced progress on Project Silica, its research initiative focused on developing durable, long-term quartz glass-based data storage technology. Close up of Writer showing high-speed multi-beam data encoding on laser pulses (Source: Microsoft) Rising global data volumes increase the need for storage that can last for generations. Researchers believe this technology could preserve information for…

AI platforms can be abused for stealthy malware communication

February 18, 2026

AI assistants like Grok and Microsoft Copilot with web browsing and URL-fetching capabilities can be abused to intermediate command-and-control (C2) activity. […]

XSS Bug in VS Code Extension Exposed Local Files

February 18, 2026

A widely used Microsoft Visual Studio Code (VS Code) extension quietly exposed millions of developers to potential local file exfiltration through a cross-site scripting (XSS) flaw. The issue affected the official Live Preview extension — downloaded more than 11 million times — and allowed malicious websites to interact with a developer’s localhost environment. An “……

Microsoft: Anti-phishing rules mistakenly blocked emails, Teams messages

February 18, 2026

Microsoft says an Exchange Online issue that mistakenly quarantined legitimate emails last week was triggered by faulty heuristic detection rules designed to block credential phishing campaigns. […]

AI Assistants Used as Covert Command-and-Control Relays

February 18, 2026

AIs like Grok and Microsoft Copilot can be exploited as covert C2 channels for malware communication

Microsoft Edge 145 lands with major enterprise security upgrades

February 18, 2026

Microsoft has begun rolling out Edge 145 to the Stable release channel, adding several enterprise-focused security enhancements. The update is being deployed in phases, with some features available through preview and targeted release programs. Edge 145 brings expanded data protection capabilities to Edge for Business. The browser supports cross-tenant enforcement of Intune App Protection Policies…

Critical Flaws Found in Four VS Code Extensions with Over 125 Million Installs

February 18, 2026

Cybersecurity researchers have disclosed multiple security vulnerabilities in four popular Microsoft Visual Studio Code (VS Code) extensions that, if successfully exploited, could allow threat actors to steal local files and execute code remotely. The extensions, which have been collectively installed more than 125 million times, are Live Server, Code Runner, Markdown Preview Enhanced, and

Microsoft says bug causes Copilot to summarize confidential emails

February 18, 2026

Microsoft says a Microsoft 365 Copilot bug has been causing the AI assistant to summarize confidential emails since late January, bypassing data loss prevention (DLP) policies that organizations rely on to protect sensitive information. […]

U.S. CISA adds Google Chromium CSS, Microsoft Windows, TeamT5 ThreatSonar Anti-Ransomware, and Zimbra flaws to its Known Exploited Vulnerabilities catalog

February 18, 2026

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Google Chromium CSS, Microsoft Windows, TeamT5 ThreatSonar Anti-Ransomware, and Zimbra flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Google Chromium CSS, Microsoft Windows, TeamT5 ThreatSonar Anti-Ransomware, and Zimbra flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws…

Microsoft Defender update lets SOC teams manage, vet response tools

February 18, 2026

Microsoft introduced library management in Microsoft Defender to help security analysts working with live response manage scripts and tools they use to triage, investigate and remediate threats. The library management interface allows analysts to organize their investigation tools and manage everything without waiting for an active session. “This enhancement in Defender’s live response tooling improves…

Microsoft Teams outage affects users in United States, Europe

February 17, 2026

Microsoft is working to resolve an ongoing outage affecting Microsoft Teams users, causing delays and preventing some from accessing the service. […]

Microsoft Finds “Summarize with AI” Prompts Manipulating Chatbot Recommendations

February 17, 2026

New research from Microsoft has revealed that legitimate businesses are gaming artificial intelligence (AI) chatbots via the “Summarize with AI” button that’s being increasingly placed on websites in ways that mirror classic search engine poisoning (AI). The new AI hijacking technique has been codenamed AI Recommendation Poisoning by the Microsoft Defender Security Research Team. The…

Microsoft AI CEO: AI to Automate Most Office Work Within 12–18 Months

February 16, 2026

The countdown for white-collar work may have already begun. Mustafa Suleyman, the CEO of Microsoft AI, suggests that the future of white-collar work may be uncertain. In a recent interview with the Financial Times, he predicted that artificial intelligence will automate most professional tasks within 12 to 18 months, including work done by lawyers, accountants,…

Microsoft equips CISOs and AI risk leaders with a new security tool

February 16, 2026

Microsoft released Security Dashboard for AI in public preview for enterprise environments. The dashboard aggregates posture and real-time risk signals from Microsoft Defender, Microsoft Entra, and Microsoft Purview into a single view within security tools. Security Dashboard for AI in browser (Source: Microsoft) “The dashboard equips CISOs and AI risk leaders with a governance tool…

Microsoft alerts on DNS-based ClickFix variant delivering malware via nslookup

February 16, 2026

Microsoft warns of a new ClickFix variant that tricks users into running DNS commands to fetch malware via nslookup. Microsoft has revealed a new ClickFix variant that deceives users into running a malicious nslookup command through the Windows Run dialog to retrieve a second-stage payload via DNS. ClickFix typically uses fake CAPTCHA or error messages…

Windows 11 KB5077181 fixes boot failures linked to failed updates

February 15, 2026

Microsoft says it has resolved a Windows 11 bug that caused some commercial systems to fail to boot with an “UNMOUNTABLE_BOOT_VOLUME” error after installing recent security updates, with the fix delivered in the February 2026 Patch Tuesday update. […]

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

February 15, 2026

Microsoft has disclosed details of a new version of the ClickFix social engineering tactic in which the attackers trick unsuspecting users into running commands that carry out a Domain Name System (DNS) lookup to retrieve the next-stage payload. Specifically, the attack relies on using the “nslookup” (short for nameserver lookup) command to execute a custom…

FTC digs deeper into Microsoft’s bundling and licensing practices

February 13, 2026

The US Federal Trade Commission (FTC) seems to be doubling down on its investigation of Microsoft and the tech giant’s potentially shady bundling and licensing practices. According to a Bloomberg report, the federal agency has been issuing civil investigative demands (CIDs) to companies that compete with Microsoft in the business software and cloud computing markets.…

FTC digs deeper into Microsoft’s bundling and licensing practices

February 13, 2026

Anthropic Adds New Board Member as It Eyes IPO

February 13, 2026

The former Microsoft and GM executive Chris Liddell has previously worked for the Trump administration.

Microsoft fixes bug that blocked Google Chrome from launching

February 13, 2026

Microsoft has fixed a known issue causing its Family Safety parental control service to block Windows users from launching Google Chrome and other web browsers. […]

Windows Notepad Markdown feature opens door to RCE (CVE-2026-20841)

February 12, 2026

Among the many security fixes released by Microsoft on February 2026 Patch Tuesday is one for CVE-2026-20841, a command injection vulnerability in Notepad that could be exploited by attackers to achieve remote code execution on targets’ Windows system. About CVE-2026-20841 For many, many years, Windows Notepad was a simple text editor and a staple tool…

Microsoft Store updated with a new CLI, analytics, and Web Installer improvements

February 12, 2026

Microsoft has introduced new developer tools, updates to developer analytics, and a Web Installer in the Microsoft Store on Windows to help developers build and scale apps on the platform. “The Microsoft Store on Windows continues to evolve, shaped by ongoing feedback from developers building and scaling apps on the platform. Over the past months,…

Windows 11 Notepad flaw let files execute silently via Markdown links

February 11, 2026

Microsoft has fixed a “remote code execution” vulnerability in Windows 11 Notepad that allowed attackers to execute local or remote programs by tricking users into clicking specially crafted Markdown links, without displaying any Windows security warnings. […]

CVE-2026-21514: Actively Exploited Word Flaw Evades OLE Security

February 11, 2026

Microsoft patched an actively exploited Word flaw that bypasses OLE protections and executes malicious documents without standard warnings.

The post CVE-2026-21514: Actively Exploited Word Flaw Evades OLE Security appeared first on eSecurity Planet.

Windows Notepad RCE Flaw Exploits Markdown Files

February 11, 2026

Microsoft has patched a vulnerability in the modern Windows Notepad app that could allow remote code execution if a user opens a specially crafted Markdown file. The issue carries a CVSS score of 8.8 and requires user interaction to exploit. The vulnerability “… allows an unauthorized attacker to execute code over a network,” said Microsoft…

Microsoft begins Secure Boot certificate update for Windows devices

February 11, 2026

Microsoft has begun updating Secure Boot certificates originally issued in 2011 to ensure that Windows devices continue to verify boot software as older certificates reach the end of their lifecycle and begin expiring in June 2026. How Secure Boot certificate updates work For most individuals and businesses that allow Microsoft to manage updates, the new…

Windows Patch Fixes Exploited RasMan DoS Flaw

February 11, 2026

Microsoft has patched a vulnerability in the Windows Remote Access Connection Manager (RasMan) service that was being exploited to trigger denial-of-service (DoS) conditions on unpatched systems. If exploited, the flaw can cause the remote access service to crash, potentially interrupting VPN connectivity and affecting remote access for users and administrators. The vulnerability “… allows an…

WSL in the Malware Ecosystem, (Wed, Feb 11th)

February 11, 2026

WSL or “Windows Subsystem Linux”[1] is a feature in the Microsoft Windows ecosystem that allows users to run a real Linux environment directly inside Windows without needing a traditional virtual machine or dual boot setup. The latest version, WSL2, runs a lightweight virtualized Linux kernel for better compatibility and performance, making it especially useful for…

Microsoft Patch Tuesday Reveals 55 Vulnerabilities

February 11, 2026

Microsoft is publishing 55 vulnerabilities this February 2026 Patch Tuesday. Microsoft is aware of exploitation in the wild for six vulnerabilities, and notes public disclosure for three of those. Earlier in the month, Microsoft provided patches to address three browser vulnerabilities, which are not included in the Patch Tuesday count above.

Microsoft Patch Tuesday: 6 exploited zero-days fixed in February 2026

February 11, 2026

Microsoft has plugged 50+ security holes on February 2026 Patch Tuesday, including six zero-day vulnerabilities exploited by attackers in the wild. The “security feature bypass” zero-days Among the zero-days fixed are three vulnerabilities that allow attackers to bypass a security feature. CVE-2026-21513 affects the MSHTML/Trident browser engine for the Microsoft Windows version of Internet Explorer,…

February 2026 Patch Tuesday comment from Tenable

February 11, 2026

GUEST OPINION: Microsoft patched 54 CVEs in its February 2026 Patch Tuesday release, with two rated critical, 51 rated as important and one rated as moderate. Elevation of privilege (EoP) vulnerabilities accounted for 42.6% of the vulnerabilities patched this month, followed by remote code execution (RCE) vulnerabilities at 20.4%. Please find below a comment from…

That “summarize with AI” button might be manipulating you

February 11, 2026

Microsoft security researchers discovered a growing trend of AI memory poisoning attacks used for promotional purposes, referred to as AI Recommendation Poisoning. The MITRE ATLAS knowledge base classifies this behavior as AML.T0080: Memory Poisoning. The activity focuses on shaping future recommendations by inserting prompts that cause an assistant to treat specific companies, websites, or services…

Microsoft Patches 59 Vulnerabilities Including Six Actively Exploited Zero-Days

February 11, 2026

Microsoft on Tuesday released security updates to address a set of 59 flaws across its software, including six vulnerabilities that it said have been exploited in the wild. Of the 59 flaws, five are rated Critical, 52 are rated Important, and two are rated Moderate in severity. Twenty-five of the patched vulnerabilities have been classified…

Microsoft Fixes Six Zero Day Vulnerability in February Patch Tuesday

February 11, 2026

Six actively exploited zero-day bug have been patched by Microsoft

U.S. CISA adds Microsoft Office and Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog

February 11, 2026

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft Office and Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Microsoft Office and Microsoft Windows flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws added to the catalog: CVE-2026-21510 Microsoft Windows Shell Protection Mechanism Failure…

Microsoft releases Windows 11 26H1 for select and upcoming CPUs

February 10, 2026

Microsoft has announced Windows 11 26H1, but it’s not for existing PCs. Instead, it will ship on devices with Snapdragon X2 processors and possibly other rumored ARM chips.w […]

February 2026 Patch Tuesday: Six new and actively exploited Microsoft vulnerabilities addressed

February 10, 2026

Microsoft highlighted six new and actively exploited vulnerabilities among the 60 fixes issued in today’s February Patch Tuesday releases. However, Tyler Reguly, associate director of security R&D at Fortra, says there’s good news: The issues are easy to resolve with regular Microsoft patches for Windows and Office, and none require any post patch configuration steps.…

Microsoft Patch Tuesday security updates for February 2026 fix six actively exploited zero-days

February 10, 2026

Microsoft Patch Tuesday security updates for February 2026 fix six actively exploited zero-day vulnerabilities. Microsoft Patch Tuesday security updates for February 2026 fix 58 new security flaws across Windows, Office, Azure, Edge, Exchange, Hyper-V, WSL, and other components, rising to 62 CVEs when third-party updates are included. Five vulnerabilities are Critical, two Moderate, and most…

Patch Tuesday, February 2026 Edition

February 10, 2026

Microsoft today released updates to fix more than 50 security holes in its Windows operating systems and other software, including patches for a whopping six “zero-day” vulnerabilities that attackers are already exploiting in the wild. Zero-day #1 this month is CVE-2026-21510, a security feature bypass vulnerability in Windows Shell wherein a single click on a…

Global Group ransomware gang running new campaign using Windows shortcut files

February 10, 2026

When Microsoft patched a vulnerability last summer that allowed threat actors to use Windows’ shortcut (.lnk) files in exploits, defenders might have hoped use of this tactic would decline. They were wrong. According to researchers at Forcepoint, a new high-volume phishing campaign spreading the Global Group ransomware has been detected that hopes to sucker employees…

Microsoft releases Windows 10 KB5075912 extended security update

February 10, 2026

Microsoft has released the Windows 10 KB5075912 extended security update to fix February 2026 Patch Tuesday vulnerabilities, including six zero-days, and continue rolling out replacements for expiring Secure Boot certificates. […]

Windows 11 KB5077181 & KB5075941 cumulative updates released

February 10, 2026

Microsoft has released Windows 11 KB5077181 and KB5075941 cumulative updates for versions 25H2/24H2 and 23H2 to fix security vulnerabilities, bugs, and add new features. […]

Microsoft rolls out new Secure Boot certificates before June expiration

February 10, 2026

Microsoft has begun rolling out updated Secure Boot certificates through monthly Windows updates to replace the original 2011 certificates that will expire in late June 2026. […]

Bing Ads Abused to Deliver Azure-Hosted Tech Support Scams

February 10, 2026

A recently identified scam campaign is using Bing search advertisements and Microsoft Azure infrastructure to redirect users to fraudulent tech support pages, demonstrating how legitimate platforms can be misused for social engineering activity. “The tech support scam campaign had a significant initial impact, affecting users across 48 different organizations in the U.S. within a short…

Microsoft 365 outage takes down admin center in North America

February 10, 2026

Microsoft is investigating an outage that blocks some administrators with business or enterprise subscriptions from accessing the Microsoft 365 admin center. […]

Microsoft tightens Windows security with app transparency and user consent

February 10, 2026

Microsoft is strengthening default protections in Windows through two security initiatives, Windows Baseline Security Mode and User Transparency and Consent. User Transparency and Consent User Transparency and Consent introduces a structured approach to how Windows presents security decisions to users. The operating system will prompt users when applications request access to sensitive resources such as…

Microsoft announces new mobile-style Windows security controls

February 10, 2026

Microsoft wants to introduce smartphone-style app permission prompts in Windows 11 to request user consent before apps can access sensitive resources such as files, cameras, and microphones. […]

As Apple’s Cook bows to Trump, Microsoft’s Nadella quietly refuses

February 10, 2026

Microsoft and Apple have for decades been seen as the Yin and Yang of the tech world, with Microsoft’s products portrayed as being for buttoned-corporate drones, while Apple’s were for the truth seekers and rebels — the people willing to stand up to those in power. Those cliches reflected the way the company’s founders and…

Ransomware group breached SmarterTools via flaw in its SmarterMail deployment

February 9, 2026

SmarterTools, the company behind the popular Microsoft Exchange alternative SmarterMail, has been breached by a ransomware-wielding group that leveraged a recently fixed vulnerability in that solution. How did the SmarterTools breach happen? Derek Curtis, the firm’s Chief Operating Officer, said that the breach happened on January 29, 2026. “Prior to the breach, we had approximately…

Ransomware group breached SmarterTools via flaw in its SmarterMail deployment

February 9, 2026

SolarWinds Web Help Desk Exploited for RCE in Multi-Stage Attacks on Exposed Servers

February 9, 2026

Microsoft has revealed that it observed a multi‑stage intrusion that involved the threat actors exploiting internet‑exposed SolarWinds Web Help Desk (WHD) instances to obtain initial access and move laterally across the organization’s network to other high-value assets. That said, the Microsoft Defender Security Research Team said it’s not clear whether the activity weaponized recently

Microsoft: Exchange Online flags legitimate emails as phishing

February 9, 2026

Microsoft is investigating an ongoing Exchange Online issue that mistakenly flags legitimate emails as phishing and quarantines them. […]

Microsoft: Exchange Online flags legitimate emails as phishing

February 9, 2026

Microsoft is investigating an ongoing Exchange Online issue that mistakenly flags legitimate emails as phishing and quarantines them. […]

February 2026 Patch Tuesday forecast: Lots of OOB love this month

February 6, 2026

Valentine’s Day is just around the corner and Microsoft has been giving us a lot of love with a non-stop supply of patches starting with January 2026 Patch Tuesday. The January releases addressed 92 vulnerabilities in Windows 11 and Server2025, as well as 79 vulnerabilities for Windows 10 and its associated servers. We also saw…

Microsoft aims to reward publishers for content used by AI

February 5, 2026

Microsoft thinks it has a win-win-win answer to the problem of AI chatbots delivering unreliable information: let them pay publishers for access to information that users can trust.  Its Publisher Content Marketplace (PCM) has the triple aim of improving the quality of material provided to AI systems, providing revenue to those who provide the information,…

Microsoft to shut down Exchange Online EWS in April 2027

February 5, 2026

Microsoft announced today that the Exchange Web Services (EWS) API for Exchange Online will be shut down in April 2027, after nearly 20 years. […]

Google Meet videoconferencing devices can now join Teams calls

February 5, 2026

Google and Microsoft have enabled interoperability between their videoconferencing devices, meaning Google Meet users can now join Teams meetings from a Chrome OS-based Google Meet device, while Teams Rooms can do the same for Google Meet calls. IT admins should be able to see the option in Google Meet console already, while end users can…

macOS Users Hit by Python Infostealers Posing as AI Installers

February 5, 2026

Microsoft details 3 Python Infostealers hitting macOS users via fake AI tools, Google ads, and Terminal tricks to steal passwords and crypto, then erase traces.

Microsoft develops a new scanner to detect hidden backdoors in LLMs

February 5, 2026

Microsoft has developed a scanner designed to detect backdoors in open-weight AI models, addressing a critical blind spot for enterprises increasingly dependent on third-party LLMs. In a blog post, the company said its research focused on identifying hidden triggers and malicious behaviors embedded during the training or fine-tuning of language models, which can remain dormant…

Microsoft launches LiteBox, a security-focused open-source library OS

February 5, 2026

Microsoft has released LiteBox, a project intended to function as a security-focused library OS that can serve as a secure kernel for protecting a guest kernel using virtualization hardware. LiteBox was developed in collaboration with the Linux Virtualization Based Security (LVBS) project. The goal is to isolate and protect a normal guest kernel by running…

AI, Global Security News

Global Security News, malware

AI, Apps, Global Security News, Risk Management

AI, Global Security News

Global Security News, Risk Management

AI, Exploits, Global Security News, malware, Network Security, Risk Management

AI, Global Security News, malware

AI, Global Security News, malware

AI, Apps, Compliance, Endpoint, Europe, Global Security News, Government & Policy, malware, Risk Management

AI, Apps, Endpoint, Exploits, Global Security News, malware

AI, Apps, Endpoint, Exploits, Global Security News, malware

AI, Apps, Endpoint, Exploits, Global Security News, Government & Policy, malware, Risk Management

AI, Global Security News, Government & Policy

AI, Apps, Endpoint, Europe, Global Security News, Network Security, privacy

AI, Exploits, Global Security News, Russia

AI, Exploits, Global Security News, Russia

AI, Global Security News

AI, Global Security News

AI, Endpoint, Exploits, Global Security News, malware, Network Security, Risk Management

AI, Apps, Compliance, Data Security, Global Security News, Risk Management

Global Security News, Network Security

AI, Apps, Global Security News

AI, Global Security News

AI, Cloud Security, Global Security News

AI, Funding, Global Security News, Government & Policy, privacy

AI, Global Security News

AI, Global Security News

AI, Apps, Compliance, Data Breaches, Data Security, Global Security News, Network Security, Risk Management

AI, Global Security News

AI, Global Security News

AI, Apps, Data Breaches, Endpoint, Global Security News, Network Security, Risk Management

AI, Global Security News

AI, Exploits, Global Security News, malware

AI, Apps, Global Security News

Cybersecurity, Exploits, Global Security News

AI, Global Security News

AI, Cybersecurity, Exploits, Global Security News, Network Security, Risk Management

AI, Global Security News