Microsoft has urged its customers to be on high alert after discovering a dangerous vulnerability in hybrid Exchange ...

If an attacker gets admin control over the on-premises Exchange server, they can forge authentication tokens or make API ...

Over 29,000 Microsoft Exchange servers remain unpatched against a vulnerability that could allow attackers to seize control ...

Today is Microsoft's August 2025 Patch Tuesday, which includes security updates for 107 flaws, including one publicly ...

Microsoft fixed 111 vulnerabilities, including a Windows Kerberos zero-day enabling full AD compromise via BadSuccessor.

UPDATED Microsoft has chosen not to tell customers about a recently patched vulnerability in M365 Copilot. The issue allowed ...

Microsoft has pointed the finger at three Chinese nation-state actors for exploiting the SharePoint vulnerabilities. Here's what we know about the security flaws and how to guard against future ...

Microsoft confirms Chinese hackers exploited a SharePoint flaw; Patches now available. Cloud-based Microsoft 365 not affected ...

Parts of the federal enterprise are likely susceptible to the flaw that allows hackers to hijack on-premises versions of ...

One strain in circulation is said to be the “Warlock” ransomware, distributed freely within compromised environments. The pattern of chained exploits, combining the newer CVEs with older ones like CVE ...

Microsoft’s security advisory emphasizes that the emergency patches provide “more robust protections” compared to earlier fixes. CVE-2025-53770 offers enhanced security beyond the CVE-2025-49704 ...