Microsoft has announced that it will be blocking more file types by default soon on Outlook for the Web and New Outlook.
Microsoft security RSS
Passkeys were introduced as the proper modern way to sign in securely online. Now, Microsoft's making new accounts passwordless by default.
A new change in Microsoft AutoUpdate (MAU), version 4.79, could impact how updates are handled on Macs.
Microsoft has published a detailed guidance on ways to deal with modern AI-powered scams that are really difficult to detect.
Microsoft has outlined a phishing scam used by the Russian hacking group Star Blizzard to get into the WhatsApp accounts of US government and diplomatic staff.
A new report from Microsoft talks about cyberattacks to education-based targets, including over 15,000 daily malicious QR code messages
Microsoft has posted an update on its progress in improving its cybersecurity systems, which now includes 34,000 full-time engineers.
Microsoft has published a detailed guidance post about the recent Nation Public Data breach that leaked Social Security Numbers, house addresses, and more, of millions.
Microsoft has been sending "Final Notice" emails to users before they lose access to Outlook on third-party mail apps.
Microsoft has offered a summary of some new ideas for boosting Windows security and updates in the near and far term after July's faulty Crowdstrike software update.
Microsoft has just announced it will be holding a special summit on September 10 to discuss endpoint security, and reps from CrowdStrike will be attending.
In a new report, the Microsoft Threat Analysis Center says that it has found evidence that Iran-based actors are creating false news sites and more to influence the 2024 US Presidential election.
Microsoft president Brad Smith has announced that as part of its bi-annual reviews of its employees, they will discuss their cybersecurity efforts which could affect their pay and bonuses.
Microsoft has just announced a new Cybersecurity Program for Rural Hospitals in the US. It will offer both free and low-cost programs to these hospitals to help them fight cyberattacks and ransomware.
The Microsoft Threat Analysis Center (MTAC) has issued a warning that Russian-based hacker groups are using AI as part of a campaign to spread misinformation about the upcoming 2024 Paris Olympics.
Microsoft has put out an alert about a cybercriminals group labeled Storm-0539. The group has allegedly used cloud and identity services to target gift card portals for major retailers.
Microsoft President Brad Smith has been asked by the US House Committee on Homeland Security to attend a hearing on May 22 to answer questions about the company's recent security breaches.
Microsoft made a number of security announcements today as part of the RSA Conference. They include expanding Microsoft Defender for Cloud to protect a company's AI deployments and more.
Charlie Bell, Microsoft's Executive Vice President for Security, has written a blog post announcing that the company is now "making security our top priority" above all other features.
In time for World Password Day, Microsoft announced that all of its consumer accounts can now use passkeys to sign into Windows, Google, and Apple platforms with a PIN, face, or fingerprint.
_medium.jpg)
A new report claims that after a series of high-profile security breaches at Microsoft, the company is now concentrating on making improvements to its security features and services.
Microsoft has announced that a Russian hacker group has been exploiting an old Windows Print Spooler issue for as long as four years in order to "steal credentials in compromised networks."
A new report from Microsoft says that China-based hackers are using more AI-based methods to create social media posts designed to increase division in the United States and elsewhere.
Microsoft has confirmed that its Copilot for Security AI service is now generally available. It's accessible for Azure subscription users and it also employs a flexible pricing model.
Microsoft has announced that its Copilot for Security will become generally available on April 1, which the company says will offer faster completion of common security tasks with text prompts.
Microsoft has posted an update on the discovery that a Russian hacker group accessed its corporate email accounts. Apparently, it used the information to breach Microsoft's source code repositories.
Microsoft has announced new updates for its Secure Future Initiative plans. They include the use of CodeQL in all of its commercial products and a $1 million donation to the Rust Foundation.
Microsoft announced in a regulatory filing on Friday that a Russian intelligence group called Nobelium hacked into the email accounts of some of the company's top executives in November 2023
Microsoft has announced it is going after a Vietnam-based cybercriminal group it has labeled as Storm-1152, and has taken down sites used by the group to sell fraudulent Microsoft accounts.
Microsoft briefly blocked employees from using OpenAI's ChatGPT chatbot due to a testing bug that limited LLMs more broadly. Microsoft recommends using its own AI chatbot, Bing Chat.
Microsoft has announced it has made some behind the scenes updates to its Authenticator app that will now block notifications of phone numbers that it believes might have been sent by hackers
Microsoft has announced plans to beef up its cybersecurity efforts. It revealed plans for its Secure Future Initiative which will use AI and more advanced software engineering to combat cybercrime.
Microsoft has revealed that a threat actor labeled Storm-0324 is distributing malware by using "phishing lures through Microsoft Teams chats" that could be used to launch ransomware attacks.
In a recent security report, Microsoft says that Chinese operatives are using images created with AI apps to spread disinformation among US voters as the 2024 US presidential election gets closer.
In a report posted this week, Microsoft stated that a Chinese hacker group was able to get a Microsoft account (MSA) consumer key because a consumer signing system crash in April 2021 exposed the key.
Microsoft has uncovered China-based Flax Typhoon cyber espionage targeting Taiwan since 2021, a campaign exploiting server vulnerabilities. The company said government agencies are at risk.
Microsoft discovers a phishing attack by a Russian-backed hacker group. They are using compromised Microsoft 365 accounts to pose as tech support in Teams. The group targets govts, NGOs, and more.
The new access to security logs is a result of Microsoft working with the US Cybersecurity and Infrastructure Security Agency (CISA) to improve online security against cyberattacks.
In a security blog post, Microsoft said a group of Chinese hackers got access to an "inactive MSA consumer signing key" and used it to forge tokens to access Outlook email accounts.
Introduced earlier this year in February, Microsoft will now begin enforcing number matching in Authenticator starting today. It adds an extra layer of security for multi-factor authentication (MFA).
