This Microsoft Entra ID Vulnerability Could Have Been Catastrophic

A pair of flaws in Microsoft's Entra ID identity and access management system could have allowed an attacker to gain access ...

Target-rich environment: Why Microsoft 365 has become the biggest risk

Microsoft 365's dominance and tight integration makes it a massive target in today's cyber landscape. Its tight integration ...

One token to pwn them all: Entra ID bug could have granted access to every tenant

A security researcher claims to have found a flaw that could have handed him the keys to almost every Entra ID tenant ...

Microsoft Teams is Getting New AI Agents

Microsoft is launching a couple of new AI agents in Microsoft Teams that can summarize threads, automate various tasks, and more.

Microsoft and Cloudflare disrupt massive RaccoonO365 phishing service

Microsoft and Cloudflare have disrupted a massive Phishing-as-a-Service (PhaaS) operation, known as RaccoonO365, that helped ...

New Gold Salem ransomware could be the most worrying new strain we've seen for a while

Security researchers have warned of a new ransomware operation making a name for itself, rather fast. Sophos has detailed the ...
Windows Report

Microsoft seals interoperability deal with EU, announces Teams licensing changes worldwide

Microsoft strikes deal with EU, pledging interoperability, data portability, and new global licensing changes for Teams.
The Hacker News

RaccoonO365 Phishing Network Dismantled as Microsoft, Cloudflare Take Down 338 Domains

Microsoft and Cloudflare seized 338 RaccoonO365 domains in September 2025, disrupting phishing attacks stealing 5,000 ...

The countdown is on - Chinese firms now have just an hour to report cybersecurity incidents

New regulations in China mean that firms now have just an hour to report cybersecurity incidents which would fall into ...
CSO Online

Entra ID vulnerability exposes gaps in cloud identity trust models, experts warn

Though patched, the flaw underscores systemic risks in cloud identity systems where legacy APIs and invisible delegation ...