Microsoft

Hackers often mimic popular tools like Microsoft Teams to exploit people's trust and familiarity with these applications.  This strategy increases the probability of users' subsequent downloading and installation of this malicious software, consequently permitting attackers...

A significant data breach involving Microsoft has come to light, exposing sensitive information of over 2,000 employees. The Cyber Press Research Team has uncovered a data leak file containing personal and professional details of...

Microsoft's July 2024 Patch Tuesday has brought a significant wave of updates, addressing a total of 139 vulnerabilities across various products and components. This release includes 139 new CVEs in Windows, Office, .NET, Azure,...

Morphisec researchers have discovered a critical zero-click remote code execution (RCE) vulnerability in Microsoft Outlook, designated CVE-2024-38021. Unlike the previously disclosed CVE-2024-30103, this vulnerability does not require authentication, making it particularly dangerous. This zero-click remote...

Microsoft employees in China will be required to use iPhones, as the company plans to block Android devices from accessing its corporate resources. This decision, as outlined in an internal memo obtained by Bloomberg News,...

Hackers attack Microsoft SmartScreen as it's a cloud-based, anti-phishing, and anti-malware component that determines whether a website is potentially malicious, protecting users from downloading harmful viruses.  By exploiting vulnerabilities in SmartScreen, hackers can sneak past...

Hackers attack Microsoft Exchange servers because they often contain sensitive communication data that can be exploited for several illicit purposes. Besides this, the widespread use of Microsoft Exchange in enterprises makes it an attractive and...

Microsoft addressed a Remote code execution vulnerability on their Bluetooth service on March 2023 Patch Tuesday. This vulnerability could allow an unauthorized threat actor to run a certain function on the Windows Bluetooth driver,...

The shift in attack vectors includes JavaScript, MSI files, LNK objects, and ISOs, as Microsoft has disabled Office macros in documents downloaded from the Internet. Some sophisticated attackers are now using other undisclosed methods to...

A newly discovered security vulnerability allows attackers to impersonate Microsoft corporate email accounts, significantly increasing the risk of phishing attacks. Security researcher Vsevolod Kokorin, also known as Slonser, found this bug, which Microsoft has...