A new variation of the ClickFix attack dubbed 'ConsentFix' abuses the Azure CLI OAuth app to hijack Microsoft accounts without the need for a password or to bypass multi-factor authentication (MFA) ...

Microsoft has confirmed that the December 2025 security updates are breaking Message Queuing (MSMQ) functionality, affecting ...

Rapidly change your password, the Microsoft security team urges as Shai-Hulud Dune Worm cloud attacks continue.

Microsoft is killing off an obsolete and vulnerable encryption cipher that Windows has supported by default for 26 years ...

Overview On December 10, NSFOCUS CERT detected that Microsoft released the December Security Update patch, which fixed 57 security issues involving widely used products such as Windows, Microsoft ...

Microsoft puts the power of AI in the hands of everyday non-technical Joes. It's a nice idea, and a surefire recipe for ...

The end of support for Windows 10 means it's now a prime target for malware. But that doesn't mean you have to upgrade to ...

Push Security, a leader in browser-based detection and response, today announced the discovery of a new class of phishing attack that enables Microsoft account takeover simply by copy-and-pasting a ...

The company is to offer bug bounty awards for people who report security vulnerabilities in third-party and open source ...

The festive season makes everyone a prime target for scams. Here is how SMEs can protect themselves and stay vigilant.

Security has been a painful issue for Microsoft on several occasions in recent years. However, the tech giant is now ...