If an attacker gets admin control over the on-premises Exchange server, they can forge authentication tokens or make API ...

Microsoft has urged its customers to be on high alert after discovering a dangerous vulnerability in hybrid Exchange ...

Over 29,000 Microsoft Exchange servers remain unpatched against a vulnerability that could allow attackers to seize control ...

Today is Microsoft's August 2025 Patch Tuesday, which includes security updates for 107 flaws, including one publicly ...

Microsoft fixed 111 vulnerabilities, including a Windows Kerberos zero-day enabling full AD compromise via BadSuccessor.

UPDATED Microsoft has chosen not to tell customers about a recently patched vulnerability in M365 Copilot. The issue allowed ...

Microsoft sounded the alarm on a hybrid Exchange bug in early August 2025 However almost 30,000 instances remain vulnerable ...

Microsoft has pointed the finger at three Chinese nation-state actors for exploiting the SharePoint vulnerabilities. Here's what we know about the security flaws and how to guard against future ...

Microsoft confirms Chinese hackers exploited a SharePoint flaw; Patches now available. Cloud-based Microsoft 365 not affected ...

Parts of the federal enterprise are likely susceptible to the flaw that allows hackers to hijack on-premises versions of ...

Microsoft’s security advisory emphasizes that the emergency patches provide “more robust protections” compared to earlier fixes. CVE-2025-53770 offers enhanced security beyond the CVE-2025-49704 ...

CrowdStrike Senior VP of Counter Adversary Operations Adam Meyers told The Register the same thing and likened Microsoft's stranglehold on government tech to the mafia shortly after Redmond's January ...