The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an alert Sunday detailing active exploitation of a critical SharePoint vulnerability, CVE-2025-53770.
Microsoft has introduced a new Email Security Transparency Dashboard in Microsoft Defender for Office 365, offering customers visibility into threat detection metrics and benchmarking data.
Microsoft this week announced it will be bringing its Extended Security Update (ESU) program for on-premises Exchange Server 2016 and 2019, offering organizations critical protection as they approach the end of life.
Microsoft this week announced an expansion of its Security Copilot assistant across Microsoft Entra and Intune, which includes new AI-powered features aimed at managing endpoints and ID infrastructure.
This month's Patch Tuesday is here, packed with 137 vulnerability fixes, including 14 rated critical and one publicly disclosed zero-day affecting Microsoft SQL Server.
Hanging onto unused data is a hacker's dream, and shredding old drives isn't enough to thwart them. A robust data sanitization plan is the most underrated way to slash your attack surface.
The Model Context Protocol (MCP), introduced by Anthropic in November 2024 to facilitate communication between AI agents and external tools, is now under scrutiny due to significant security vulnerabilities.
Drowning in device sprawl, inconsistent policies and security blind spots? A longtime Microsoft expert shares how to untangle the chaos.
Businesses trying to extend the life of their Windows 10 devices can now begin appealing Microsoft for the privilege.
Seven months after unveiling its Windows Resiliency Initiative (WRI), Microsoft on Thursday announced a raft of new and upcoming security capabilities.
With security analytics steadily becoming more AI-driven, Microsoft stands alone as the leading cloud hyperscaler owing to its advanced AI capabilities and long-term roadmap, according to the findings of a recent Forrester paper.
Microsoft's new Copilot Vision feature may resemble a scaled-down version of the controversial Windows Recall, but with key differences in privacy controls and data handling.
IBM has launched a new software stack aimed squarely at enterprise IT teams tasked with managing the complex governance and security challenges posed by autonomous AI systems.
Microsoft has introduced a new vendor ecosystem for Microsoft Defender for Office 365, expanding its Integrated Cloud Email Security (ICES) strategy through open APIs and tighter integration with third-party solutions.
Security researchers at Calif.-based Proofpoint have uncovered a large-scale account takeover campaign aimed at Microsoft Entra ID environments.
Microsoft's June Patch Tuesday is here with fixes for 66 vulnerabilities across its software portfolio, including one actively exploited zero-day, one publicly disclosed zero-day flaw and a set of unpatched Office flaws that security researchers say could be far more dangerous than the numbers suggest.
OpenAI is ramping up its efforts to identify and disrupt the misuse of artificial intelligence in cybercrime, social engineering, and influence operations, particularly those targeting or operating through cloud infrastructure.
Microsoft plans to begin retiring the password autofill feature in its Authenticator app next month, as part of its broader shift toward more secure, passwordless sign-in methods.
Learn how to disable Microsoft's default requirement for its Authenticator app in Microsoft 365 and regain control over your organization's multifactor authentication settings.
A new report by the Microsoft Threat Intelligence team has provided details on an espionage group based out of Turkey that has been exploiting a zero-day flaw in Output Messenger to target military personnel in Iraq.