Microsoft

Microsoft working on patch for RoguePlanet Defender zero-day (CVE-2026-50656)

0-day, Don't miss, exploit, Hot stuff, Microsoft, Microsoft Defender, News, vulnerability disclosure /

Microsoft working on patch for RoguePlanet Defender zero-day (CVE-2026-50656) 2026-06-17 at 14:26 By Zeljka Zorz Microsoft has acknowledged the local elevation of privilege issue in Microsoft Defender that can be triggered via the “RoguePlanet” exploit, and is “working to provide a high quality security update that addresses this vulnerability.” The vulnerability, which has been assigned […]

Microsoft working on patch for RoguePlanet Defender zero-day (CVE-2026-50656) Read More »

Proving what a military AI model will do is the real problem

AI, Don't miss, Features, Government, hardware, Lockheed Martin, Meta, Microsoft, News, OpenAI, research, USA /

Proving what a military AI model will do is the real problem 2026-06-15 at 07:30 By Sinisa Markovic Defense contractors build AI systems that task drones automatically and propose kill-chains to support soldiers. Several of these contractors have partnered with frontier AI companies to put advanced models into military tools. Anduril works with OpenAI, Palantir

Proving what a military AI model will do is the real problem Read More »

Microsoft Patches Exploited Exchange Server Vulnerability

Exchange, exploited, Featured, Microsoft, patch, Vulnerabilities, vulnerability /

Microsoft Patches Exploited Exchange Server Vulnerability 2026-06-11 at 11:18 By Eduard Kovacs The company warned about zero-day attacks exploiting the Exchange Server vulnerability CVE-2026-42897 on May 14.  The post Microsoft Patches Exploited Exchange Server Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Microsoft Patches Exploited Exchange Server Vulnerability Read More »

Record Microsoft Patch Tuesday, fresh zero-day

AI, Don't miss, Fortra, Hot stuff, Microsoft, Microsoft Defender, News, Patch Tuesday, patching, security update, Tenable, Trend Micro, Windows /

Record Microsoft Patch Tuesday, fresh zero-day 2026-06-10 at 14:23 By Zeljka Zorz Microsoft marked its largest-ever Patch Tuesday this month, by shipping fixes for nearly 200 vulnerabilities. Within hours, “Nightmare Eclipse”, the researcher behind weeks of escalating Windows exploit releases, dropped a proof-of-concept exploit for a new zero-day: “RoguePlanet”, which abuses a race condition in

Record Microsoft Patch Tuesday, fresh zero-day Read More »

Microsoft Patches 200 Vulnerabilities

Microsoft, patch, Patch Tuesday, Vulnerabilities, vulnerability /

Microsoft Patches 200 Vulnerabilities 2026-06-09 at 22:39 By Eduard Kovacs Three of the vulnerabilities fixed with the latest Patch Tuesday updates were publicly disclosed before Microsoft addressed them. The post Microsoft Patches 200 Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Microsoft Patches 200 Vulnerabilities Read More »

Microsoft changes how Defender for Endpoint EDR updates are delivered on Windows

cybersecurity, Endpoint Security, Microsoft, News, security update, update, Windows /

Microsoft changes how Defender for Endpoint EDR updates are delivered on Windows 2026-06-08 at 20:33 By Sinisa Markovic Microsoft will distribute Defender for Endpoint EDR updates through Microsoft Update, enabling EDR security improvements to be released independently of monthly Windows operating system updates. The rollout started for Windows 10 devices in late May 2026 and

Microsoft changes how Defender for Endpoint EDR updates are delivered on Windows Read More »

Photos: Infosecurity Europe 2026

Cato Networks, conferences, Europe, JupiterOne, Menlo Security, Microsoft, Netskope, News, OneTrust, Panaseer, Pen Test Partners, runZero, Syteca, UK, Vanta /

Photos: Infosecurity Europe 2026 2026-06-05 at 10:16 By Help Net Security Infosecurity Europe 2026 is a cybersecurity event that took place from June 2 to 4 in London. Help Net Security was on-site and here’s a closer look at the conference. The featured vendors are: Microsoft, JupiterOne, Menlo Security, Cato Networks, Falkin, Vivida, Pen Test

Photos: Infosecurity Europe 2026 Read More »

June 2026 Patch Tuesday forecast: Where are the CVEs?

Adobe, Anthropic, apple, Don't miss, Expert analysis, Expert corner, Ivanti, Microsoft, Mozilla, News, opinion, Oracle /

June 2026 Patch Tuesday forecast: Where are the CVEs? 2026-06-05 at 10:16 By Help Net Security My forecast from last month was only partly right. After the Anthropic Mythos announcements and the deluge of newly discovered vulnerabilities from vendors like Mozilla, Microsoft’s updates were standard fare, 65 CVEs reported in Windows 11 and 58 in

June 2026 Patch Tuesday forecast: Where are the CVEs? Read More »

Microsoft responds to security challenges facing code, AI agents, and models

AI, cybersecurity, Microsoft, News /

Microsoft responds to security challenges facing code, AI agents, and models 2026-06-03 at 20:20 By Sinisa Markovic Microsoft has introduced a series of security tools and capabilities focused on AI-driven vulnerability discovery, AI agents, and AI models. The updates include a multi-agent vulnerability discovery system, new controls for managing and securing AI agents, data protection

Microsoft responds to security challenges facing code, AI agents, and models Read More »

Microsoft Tries to Calm Legal Threat Fears After Zero-Day Disclosure Backlash

controversy, Featured, Microsoft, Vulnerabilities, Zero-Day /

Microsoft Tries to Calm Legal Threat Fears After Zero-Day Disclosure Backlash 2026-06-03 at 12:57 By Eduard Kovacs Microsoft responds to backlash over its threats of legal action against researchers who publicly disclose zero-day vulnerabilities. The post Microsoft Tries to Calm Legal Threat Fears After Zero-Day Disclosure Backlash appeared first on SecurityWeek. This article is an

Microsoft Tries to Calm Legal Threat Fears After Zero-Day Disclosure Backlash Read More »

Microsoft Scout agent opens a new category of always-on Autopilots

access control, agentic AI, AI, automation, data, Microsoft, News /

Microsoft Scout agent opens a new category of always-on Autopilots 2026-06-03 at 11:28 By Anamarija Pogorelec Workplace AI assistants have mostly waited for a prompt before doing anything. A user asks, the tool answers, and the exchange ends there. Microsoft is putting a different kind of agent inside its Office applications, one designed to keep

Microsoft Scout agent opens a new category of always-on Autopilots Read More »

Exclusive: How One Line of Code Put Billions of Microsoft Android App Downloads at Risk

Android, Featured, Microsoft, Mobile & Wireless, vulnerability /

Exclusive: How One Line of Code Put Billions of Microsoft Android App Downloads at Risk 2026-06-02 at 18:01 By Kevin Townsend A simple development setting bypassed protections designed to prevent unauthorized Android apps from accessing Microsoft account tokens, exposing billions of installations. The post Exclusive: How One Line of Code Put Billions of Microsoft Android

Exclusive: How One Line of Code Put Billions of Microsoft Android App Downloads at Risk Read More »

Microsoft Entra pushes passkeys, tightens identity security

access management, authentication, credentials, identity management, Microsoft, Microsoft Entra ID, News /

Microsoft Entra pushes passkeys, tightens identity security 2026-06-02 at 15:47 By Anamarija Pogorelec Microsoft has released multiple identity and network access capabilities for Entra, its family of identity and network access products that help organizations implement a zero trust security strategy, over the last 30 days. Features reaching general availability Identity and authentication updates Phishing-resistant

Microsoft Entra pushes passkeys, tightens identity security Read More »

Microsoft 365 Copilot redesign brings context and actions into one workspace

AI, Microsoft, Microsoft 365, News /

Microsoft 365 Copilot redesign brings context and actions into one workspace 2026-05-29 at 12:14 By Anamarija Pogorelec Microsoft 365 Copilot, an AI assistant that helps people write, summarize, analyze information, and complete work tasks, has been redesigned. It now serves as a single, flexible entry point to Copilot across Microsoft 365 apps, suggesting relevant actions

Microsoft 365 Copilot redesign brings context and actions into one workspace Read More »

Microsoft’s Copilot trust test: Zero findings, more models, wider oversight

AI, auditing, certification, Microsoft, Microsoft 365, News /

Microsoft’s Copilot trust test: Zero findings, more models, wider oversight 2026-05-28 at 16:53 By Anamarija Pogorelec Microsoft 365 Copilot and Copilot Chat (Copilot) have been recertified under ISO/IEC 42001:2023 by an independent auditor for the second consecutive year. Copilot first received ISO 42001 certification in March 2025. This year’s recertification recorded zero non-conformities and zero

Microsoft’s Copilot trust test: Zero findings, more models, wider oversight Read More »

AI chatbot recommendations lure users to cryptojacking malware sites

AI, cryptojacking, cybercrime, Microsoft, News /

AI chatbot recommendations lure users to cryptojacking malware sites 2026-05-27 at 22:27 By Sinisa Markovic Cybercriminals are using AI chatbot interactions alongside poisoned search results to direct users to malicious download sites in an active cryptojacking campaign, Microsoft has warned. The campaign impersonates legitimate software tools such as CrystalDiskInfo, HWMonitor, Display Driver Uninstaller (DDU), FurMark,

AI chatbot recommendations lure users to cryptojacking malware sites Read More »

High-severity SharePoint RCE bug patched by Microsoft (CVE-2026-45659)

Don't miss, Hot stuff, Microsoft, News, security update, SharePoint, vulnerability /

High-severity SharePoint RCE bug patched by Microsoft (CVE-2026-45659) 2026-05-26 at 13:56 By Zeljka Zorz Microsoft has released patches for a high-severity remote code execution vulnerability (CVE-2026-45659) in SharePoint that may be exploited in low-complexity attacks. It affects the SharePoint Server Subscription Edition, SharePoint Server 2019, and SharePoint Enterprise Server 2016. About CVE-2026-45659 CVE-2026-45659 stems from

High-severity SharePoint RCE bug patched by Microsoft (CVE-2026-45659) Read More »

Microsoft 365 users targeted by new phishing threat that bypasses MFA

cybercrime, FBI, Microsoft, Microsoft 365, News, phishing /

Microsoft 365 users targeted by new phishing threat that bypasses MFA 2026-05-22 at 12:17 By Sinisa Markovic Microsoft 365 access tokens are being targeted by an emerging Phishing-as-a-Service (PhaaS) platform called Kali365, the FBI is warning. First observed in April 2026, Kali365 has been distributed through Telegram, allowing cybercriminals to obtain Microsoft 365 access tokens

Microsoft 365 users targeted by new phishing threat that bypasses MFA Read More »

Microsoft open-sources tools for designing and testing AI agents

agentic AI, Don't miss, Hot stuff, Microsoft, News, open source, red team /

Microsoft open-sources tools for designing and testing AI agents 2026-05-21 at 19:15 By Zeljka Zorz Microsoft has open-sourced two tools aimed at bringing security discipline to AI agent development: Clarity, a structured design review tool, and RAMPART, a continuous testing framework. The release comes from Microsoft’s AI Red Team, the company’s internal unit that stress-tests

Microsoft open-sources tools for designing and testing AI agents Read More »

Microsoft Defender vulnerabilities exploited in the wild (CVE-2026-41091, CVE-2026-45498)

Don't miss, Hot stuff, Microsoft, Microsoft Defender, News, vulnerability, vulnerability disclosure, Windows /

Microsoft Defender vulnerabilities exploited in the wild (CVE-2026-41091, CVE-2026-45498) 2026-05-21 at 14:22 By Zeljka Zorz Attackers are exploiting two Microsoft Defender vulnerabilities (CVE-2026-41091 and CVE-2026-45498), Microsoft acknowledged and CISA confirmed by adding them to its Known Exploited Vulnerabilities catalog. The vulnerabilities CVE-2026-41091 allows for local privilege elevation (LPE), and is caused by the Microsoft Malware

Microsoft Defender vulnerabilities exploited in the wild (CVE-2026-41091, CVE-2026-45498) Read More »

Scroll to Top