Microsoft

July 2026 Patch Tuesday forecast: Is CVE tracking still practical?

July 2026 Patch Tuesday forecast: Is CVE tracking still practical? 2026-07-10 at 10:30 By Help Net Security I was off by a month in my forecast of record-setting CVE releases from Microsoft. In June, we saw the deluge of over 200 reported CVEs that I expected in May. There were 116 CVEs for Windows 11 […]

July 2026 Patch Tuesday forecast: Is CVE tracking still practical? Read More »

Microsoft is rewriting Windows patch guidance because of AI

Microsoft is rewriting Windows patch guidance because of AI 2026-07-10 at 09:00 By Anamarija Pogorelec Microsoft is recommending that organizations shorten Windows update deployment timelines, warning that advances in AI are reducing the time attackers need to identify and exploit vulnerabilities after security updates are released. The company says organizations should reassess how quickly they

Microsoft is rewriting Windows patch guidance because of AI Read More »

Microsoft releases fix for RoguePlanet Defender flaw (CVE-2026-50656)

Microsoft releases fix for RoguePlanet Defender flaw (CVE-2026-50656) 2026-07-09 at 15:14 By Zeljka Zorz Microsoft has finally released a security update for its Microsoft Malware Protection Engine, which fixes CVE-2026-50656, the Windows Defender local privilege escalation vulnerability triggered by the RoguePlanet exploit. The vulnerability and the fix CVE-2026-50656 is due to improper link resolution before

Microsoft releases fix for RoguePlanet Defender flaw (CVE-2026-50656) Read More »

20 open-source cybersecurity tools to keep your team ready for anything

20 open-source cybersecurity tools to keep your team ready for anything 2026-07-08 at 08:30 By Anamarija Pogorelec AI is changing how security teams find vulnerabilities, analyze code, test applications, and protect infrastructure. Developers are building tools to secure AI systems themselves, from coding agents and memory protection to model exposure discovery. This roundup covers recent

20 open-source cybersecurity tools to keep your team ready for anything Read More »

Microsoft wants to keep your AI agents from going rogue

Microsoft wants to keep your AI agents from going rogue 2026-07-07 at 07:45 By Anamarija Pogorelec Microsoft has introduced Microsoft Execution Containers (MXC), a cross-platform, policy-driven execution layer for AI agents on Windows and Windows Subsystem for Linux (WSL), now available in early preview. Updated Agent 365 platform (Source: Microsoft) Developers can define constraints for

Microsoft wants to keep your AI agents from going rogue Read More »

Microsoft Adds New Teams Controls to Block Unauthorized AI Bots From Meetings

Microsoft Adds New Teams Controls to Block Unauthorized AI Bots From Meetings 2026-07-01 at 21:08 By Ionut Arghire Microsoft’s new Teams admin policy requires organizer approval for external AI bots, giving organizations greater visibility and control over automated participants in sensitive meetings. The post Microsoft Adds New Teams Controls to Block Unauthorized AI Bots From

Microsoft Adds New Teams Controls to Block Unauthorized AI Bots From Meetings Read More »

Microsoft wants to stop unwanted bots from entering Teams meetings

Microsoft wants to stop unwanted bots from entering Teams meetings 2026-07-01 at 07:30 By Anamarija Pogorelec A new Microsoft Teams admin policy, Manage external bots and their access to meetings, gives organizations greater visibility and control over external bots in meetings. The policy identifies bots and applies safeguards before they are admitted. Microsoft will begin

Microsoft wants to stop unwanted bots from entering Teams meetings Read More »

Microsoft gives Windows 10 users an unexpected extra year of free security updates

Microsoft gives Windows 10 users an unexpected extra year of free security updates 2026-06-26 at 09:32 By Sinisa Markovic Microsoft has given Windows 10 users another year of free security updates, extending its consumer Extended Security Updates (ESU) program until October 12, 2027. “Windows 10 support has ended. You can enroll in ESU any time

Microsoft gives Windows 10 users an unexpected extra year of free security updates Read More »

Law enforcement hits StealC and Amadey malware networks

Law enforcement hits StealC and Amadey malware networks 2026-06-24 at 18:05 By Zeljka Zorz Operation Endgame, the largest international law enforcement operation aimed at disrupting ransomware and cybercrime infrastructure across the world, has claimed its latest targets: StealC and Amadey. The notice on disrupted websites (Source: Microsoft) While developed by separate criminal groups, those two

Law enforcement hits StealC and Amadey malware networks Read More »

Microsoft and Allies Smash Shared Infrastructure of Amadey and StealC Malware

Microsoft and Allies Smash Shared Infrastructure of Amadey and StealC Malware 2026-06-24 at 18:02 By Eduard Kovacs Hundreds of C&C servers were disrupted in an operation involving law enforcement and several cybersecurity companies. The post Microsoft and Allies Smash Shared Infrastructure of Amadey and StealC Malware appeared first on SecurityWeek. This article is an excerpt

Microsoft and Allies Smash Shared Infrastructure of Amadey and StealC Malware Read More »

Microsoft working on patch for RoguePlanet Defender zero-day (CVE-2026-50656)

Microsoft working on patch for RoguePlanet Defender zero-day (CVE-2026-50656) 2026-06-17 at 14:26 By Zeljka Zorz Microsoft has acknowledged the local elevation of privilege issue in Microsoft Defender that can be triggered via the “RoguePlanet” exploit, and is “working to provide a high quality security update that addresses this vulnerability.” The vulnerability, which has been assigned

Microsoft working on patch for RoguePlanet Defender zero-day (CVE-2026-50656) Read More »

Proving what a military AI model will do is the real problem

Proving what a military AI model will do is the real problem 2026-06-15 at 07:30 By Sinisa Markovic Defense contractors build AI systems that task drones automatically and propose kill-chains to support soldiers. Several of these contractors have partnered with frontier AI companies to put advanced models into military tools. Anduril works with OpenAI, Palantir

Proving what a military AI model will do is the real problem Read More »

Microsoft Patches Exploited Exchange Server Vulnerability

Microsoft Patches Exploited Exchange Server Vulnerability 2026-06-11 at 11:18 By Eduard Kovacs The company warned about zero-day attacks exploiting the Exchange Server vulnerability CVE-2026-42897 on May 14.  The post Microsoft Patches Exploited Exchange Server Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Microsoft Patches Exploited Exchange Server Vulnerability Read More »

Record Microsoft Patch Tuesday, fresh zero-day

Record Microsoft Patch Tuesday, fresh zero-day 2026-06-10 at 14:23 By Zeljka Zorz Microsoft marked its largest-ever Patch Tuesday this month, by shipping fixes for nearly 200 vulnerabilities. Within hours, “Nightmare Eclipse”, the researcher behind weeks of escalating Windows exploit releases, dropped a proof-of-concept exploit for a new zero-day: “RoguePlanet”, which abuses a race condition in

Record Microsoft Patch Tuesday, fresh zero-day Read More »

Microsoft Patches 200 Vulnerabilities

Microsoft Patches 200 Vulnerabilities 2026-06-09 at 22:39 By Eduard Kovacs Three of the vulnerabilities fixed with the latest Patch Tuesday updates were publicly disclosed before Microsoft addressed them. The post Microsoft Patches 200 Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Microsoft Patches 200 Vulnerabilities Read More »

Microsoft changes how Defender for Endpoint EDR updates are delivered on Windows

Microsoft changes how Defender for Endpoint EDR updates are delivered on Windows 2026-06-08 at 20:33 By Sinisa Markovic Microsoft will distribute Defender for Endpoint EDR updates through Microsoft Update, enabling EDR security improvements to be released independently of monthly Windows operating system updates. The rollout started for Windows 10 devices in late May 2026 and

Microsoft changes how Defender for Endpoint EDR updates are delivered on Windows Read More »

Photos: Infosecurity Europe 2026

Photos: Infosecurity Europe 2026 2026-06-05 at 10:16 By Help Net Security Infosecurity Europe 2026 is a cybersecurity event that took place from June 2 to 4 in London. Help Net Security was on-site and here’s a closer look at the conference. The featured vendors are: Microsoft, JupiterOne, Menlo Security, Cato Networks, Falkin, Vivida, Pen Test

Photos: Infosecurity Europe 2026 Read More »

June 2026 Patch Tuesday forecast: Where are the CVEs?

June 2026 Patch Tuesday forecast: Where are the CVEs? 2026-06-05 at 10:16 By Help Net Security My forecast from last month was only partly right. After the Anthropic Mythos announcements and the deluge of newly discovered vulnerabilities from vendors like Mozilla, Microsoft’s updates were standard fare, 65 CVEs reported in Windows 11 and 58 in

June 2026 Patch Tuesday forecast: Where are the CVEs? Read More »

Microsoft responds to security challenges facing code, AI agents, and models

Microsoft responds to security challenges facing code, AI agents, and models 2026-06-03 at 20:20 By Sinisa Markovic Microsoft has introduced a series of security tools and capabilities focused on AI-driven vulnerability discovery, AI agents, and AI models. The updates include a multi-agent vulnerability discovery system, new controls for managing and securing AI agents, data protection

Microsoft responds to security challenges facing code, AI agents, and models Read More »

Microsoft Tries to Calm Legal Threat Fears After Zero-Day Disclosure Backlash

Microsoft Tries to Calm Legal Threat Fears After Zero-Day Disclosure Backlash 2026-06-03 at 12:57 By Eduard Kovacs Microsoft responds to backlash over its threats of legal action against researchers who publicly disclose zero-day vulnerabilities. The post Microsoft Tries to Calm Legal Threat Fears After Zero-Day Disclosure Backlash appeared first on SecurityWeek. This article is an

Microsoft Tries to Calm Legal Threat Fears After Zero-Day Disclosure Backlash Read More »

Scroll to Top