Microsoft

February 2026 Patch Tuesday forecast: Lots of OOB love this month

February 2026 Patch Tuesday forecast: Lots of OOB love this month 2026-02-06 at 09:54 By Help Net Security Valentine’s Day is just around the corner and Microsoft has been giving us a lot of love with a non-stop supply of patches starting with January 2026 Patch Tuesday. The January releases addressed 92 vulnerabilities in Windows […]

February 2026 Patch Tuesday forecast: Lots of OOB love this month Read More »

Microsoft launches LiteBox, a security-focused open-source library OS

Microsoft launches LiteBox, a security-focused open-source library OS 2026-02-05 at 11:29 By Anamarija Pogorelec Microsoft has released LiteBox, a project intended to function as a security-focused library OS that can serve as a secure kernel for protecting a guest kernel using virtualization hardware. LiteBox was developed in collaboration with the Linux Virtualization Based Security (LVBS)

Microsoft launches LiteBox, a security-focused open-source library OS Read More »

Microsoft brings project-focused AI agents into OneDrive

Microsoft brings project-focused AI agents into OneDrive 2026-02-05 at 11:29 By Sinisa Markovic Teams often rely on shared document collections to track project history, decisions, and operational knowledge. To support this workflow, Microsoft introduced Agents in OneDrive, allowing users to create AI assistants built from selected files and folders. The feature allows users to group

Microsoft brings project-focused AI agents into OneDrive Read More »

Russian hackers are exploiting recently patched Microsoft Office vulnerability (CVE-2026-21509)

Russian hackers are exploiting recently patched Microsoft Office vulnerability (CVE-2026-21509) 2026-02-03 at 17:21 By Zeljka Zorz Russian state-sponsored hackers Fancy Bear (aka APT 28) are exploiting CVE-2026-21509, a Microsoft Office vulnerability for which Microsoft released an emergency fix last week. The exploitation CVE-2026-21509 allows unauthorized attackers to bypass a security feature (OLE mitigations in Microsoft

Russian hackers are exploiting recently patched Microsoft Office vulnerability (CVE-2026-21509) Read More »

Microsoft sets a path to switch off NTLM across Windows

Microsoft sets a path to switch off NTLM across Windows 2026-02-02 at 13:13 By Sinisa Markovic Windows is shifting to a more secure authentication approach, moving away from New Technology LAN Manager (NTLM) and toward stronger, Kerberos-based options. NTLM has been part of Windows for decades and continues to appear in some environments, particularly where

Microsoft sets a path to switch off NTLM across Windows Read More »

Microsoft sets new timeline for Sentinel transition to Defender portal

Microsoft sets new timeline for Sentinel transition to Defender portal 2026-01-30 at 14:37 By Sinisa Markovic Microsoft has updated the timeline for transitioning the Microsoft Sentinel experience from the Azure portal to the Microsoft Defender portal from July 1, 2026 to March 31, 2027. The updated schedule extends access by nearly nine months. Microsoft said

Microsoft sets new timeline for Sentinel transition to Defender portal Read More »

Conditional Access enforcement change coming to Microsoft Entra

Conditional Access enforcement change coming to Microsoft Entra 2026-01-29 at 14:05 By Sinisa Markovic Microsoft will change how Conditional Access policies are enforced in Microsoft Entra starting March 27, 2026, with a phased rollout continuing through June 2026. The change affects sign-ins through client applications that request only OIDC scopes or a limited set of

Conditional Access enforcement change coming to Microsoft Entra Read More »

Microsoft brings AI-powered investigations to security teams

Microsoft brings AI-powered investigations to security teams 2026-01-27 at 15:49 By Sinisa Markovic Microsoft Purview Data Security Investigations is now available. The tool is part of Microsoft Purview and is intended for scenarios such as data breach and leak investigations, credential exposure, internal fraud and bribery, sensitive data exposure in Teams, and inappropriate content investigations.

Microsoft brings AI-powered investigations to security teams Read More »

Microsoft reveals actively exploited Office zero-day, provides emergency fix (CVE-2026-21509)

Microsoft reveals actively exploited Office zero-day, provides emergency fix (CVE-2026-21509) 2026-01-27 at 11:22 By Zeljka Zorz Microsoft released emergency Office security updates to fix a security feature bypass vulnerability (CVE-2026-21509) that its threat intelligence and security teams spotted being exploited in the wild in zero-day attacks. Users and admins are advised to review the associated

Microsoft reveals actively exploited Office zero-day, provides emergency fix (CVE-2026-21509) Read More »

Microsoft Patches Office Zero-Day Likely Exploited in Targeted Attacks

Microsoft Patches Office Zero-Day Likely Exploited in Targeted Attacks 2026-01-27 at 11:06 By Eduard Kovacs The vulnerability is tracked as CVE-2026-21509 and it can be exploited to bypass security features.  The post Microsoft Patches Office Zero-Day Likely Exploited in Targeted Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Microsoft Patches Office Zero-Day Likely Exploited in Targeted Attacks Read More »

Inside Microsoft’s veteran-to-tech workforce pipeline

Inside Microsoft’s veteran-to-tech workforce pipeline 2026-01-26 at 12:12 By Zeljka Zorz The technology workforce is changing, and military veterans are increasingly being recognized as one of the industry’s most valuable and dependable talent pools. In this Help Net Security interview, Chris Cortez, Vice President of Military Affairs at Microsoft and longtime leader of the Microsoft

Inside Microsoft’s veteran-to-tech workforce pipeline Read More »

Microsoft Entra ID will auto-enable passkey profiles, synced passkeys

Microsoft Entra ID will auto-enable passkey profiles, synced passkeys 2026-01-26 at 10:52 By Sinisa Markovic Starting March 2026, Microsoft Entra ID will automatically enable passkey profiles and introduce support for synced passkeys. Passkey profiles move into general availability The update brings passkey profiles and synced passkeys into general availability. Administrators gain access to a new

Microsoft Entra ID will auto-enable passkey profiles, synced passkeys Read More »

Phishers Abuse SharePoint in New Campaign Targeting Energy Sector

Phishers Abuse SharePoint in New Campaign Targeting Energy Sector 2026-01-23 at 15:31 By Ionut Arghire Threat actors are leveraging the file-sharing service for payload delivery in AitM phishing and BEC attacks. The post Phishers Abuse SharePoint in New Campaign Targeting Energy Sector appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Phishers Abuse SharePoint in New Campaign Targeting Energy Sector Read More »

Microsoft introduces winapp, an open-source CLI for building Windows apps

Microsoft introduces winapp, an open-source CLI for building Windows apps 2026-01-23 at 07:24 By Anamarija Pogorelec Microsoft has released winapp, a new command line interface aimed at simplifying the process of building Windows applications. The open-source tool targets developers who rely on terminal based workflows and want a consistent way to create, configure, and manage

Microsoft introduces winapp, an open-source CLI for building Windows apps Read More »

Energy sector orgs targeted with AiTM phishing campaign

Energy sector orgs targeted with AiTM phishing campaign 2026-01-22 at 15:19 By Zeljka Zorz Organizations in the energy sector are being targeted with phishing emails aimed at compromising enterprise accounts, Microsoft warns. The attack campaign The attacks started with phishing emails with “NEW PROPOSAL – NDA” in the subject line, coming from a compromised email

Energy sector orgs targeted with AiTM phishing campaign Read More »

Microsoft updates the security baseline for Microsoft 365 Apps for enterprise

Microsoft updates the security baseline for Microsoft 365 Apps for enterprise 2026-01-22 at 01:13 By Anamarija Pogorelec Microsoft has published version 2512 of its security baseline for Microsoft 365 Apps for enterprise. The baseline documents recommended policy settings for Office applications used in enterprise environments and maps those settings to current management tools. What the

Microsoft updates the security baseline for Microsoft 365 Apps for enterprise Read More »

Microsoft shuts down RedVDS cybercrime subscription service tied to millions in fraud losses

Microsoft shuts down RedVDS cybercrime subscription service tied to millions in fraud losses 2026-01-15 at 10:22 By Sinisa Markovic Microsoft has announced a coordinated legal action in the United States and the United Kingdom to disrupt RedVDS, a global cybercrime subscription service tied to large-scale fraud losses. The effort forms part of a broader joint

Microsoft shuts down RedVDS cybercrime subscription service tied to millions in fraud losses Read More »

RedVDS Cybercrime Service Disrupted by Microsoft and Law Enforcement

RedVDS Cybercrime Service Disrupted by Microsoft and Law Enforcement 2026-01-14 at 17:43 By Eduard Kovacs RedVDS enables threat actors to set up servers that can be used for phishing, BEC attacks, account takeover, and fraud. The post RedVDS Cybercrime Service Disrupted by Microsoft and Law Enforcement appeared first on SecurityWeek. This article is an excerpt

RedVDS Cybercrime Service Disrupted by Microsoft and Law Enforcement Read More »

January 2026 Patch Tuesday forecast: And so it continues

January 2026 Patch Tuesday forecast: And so it continues 2026-01-09 at 11:26 By Help Net Security Welcome to a new year of my Patch Tuesday forecast blog where I provide a summary of Microsoft and other vendor’s security patch activity (and reported issues) for the month, talk about some of the latest trends, processes, and

January 2026 Patch Tuesday forecast: And so it continues Read More »

Complex Routing, Misconfigurations Exploited for Domain Spoofing in Phishing Attacks

Complex Routing, Misconfigurations Exploited for Domain Spoofing in Phishing Attacks 2026-01-07 at 13:46 By Ionut Arghire Threat actors spoof legitimate domains to make their phishing emails appear to have been sent internally. The post Complex Routing, Misconfigurations Exploited for Domain Spoofing in Phishing Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Complex Routing, Misconfigurations Exploited for Domain Spoofing in Phishing Attacks Read More »

Scroll to Top