Microsoft Archives

A corporate logo for Microsoft hangs above the door to its office building on 8th Avenue on June 24, 2025, in New York City. (Photo by Gary Hershorn/Getty Images)

Microsoft Patch Tuesday follows SharePoint attacks, Exchange server warnings

Despite serious alarm raised by officials, organizations have not applied the patch for Microsoft Exchange servers en masse.

Aug 12, 2025 By Matt Kapko

DARPA’s AI Cyber Challenge reveals winning models for automated vulnerability discovery and patching

The initiative seeks to patch vulnerabilities in open-source code before they are exploited by would-be attackers. Now comes the hard part — putting the systems to the…

Aug 8, 2025 By Matt Kapko

Microsoft: An organization without a response plan will be hit harder by a security incident

Security leaders shared advice gleaned from customer engagements, and reinforced the importance of planning and following fundamentals for defense.

Aug 8, 2025 By Matt Kapko

Microsoft Romania headquarters in City Gate Towers situated in Free Press Square, in Bucharest, Romania. (Getty Images)

CISA, Microsoft warn organizations of high-severity Microsoft Exchange vulnerability

The public disclosure and advisories came late Wednesday during Black Hat, but Microsoft said the timing was coordinated.

Aug 7, 2025 By Matt Kapko

Members of the Peoples Liberation Army band leave after the closing session of the Chinese People’s Political Consultative Conference, or CPPCC, at the Great Hall of the People on March 10, 2025 in Beijing. (Photo by Kevin Frayer/Getty Images)

China accuses US of exploiting Microsoft zero-day in cyberattack

The accusation, the latest from Beijing, says U.S. intelligence agencies attacked two Chinese military enterprises.

Aug 1, 2025 By Tim Starks

Russia-affiliated Secret Blizzard conducting ongoing espionage against embassies in Moscow

A new Microsoft report finds that the long-running threat group has gained positions on state-aligned ISPs and Russian telecoms, while tricking foreign embassy staff to download custom…

Jul 31, 2025 By Matt Kapko

Microsoft’s software licensing playbook is a national security risk

The tech giant’s model is built around anticompetitive practices, the head of the Coalition for Fair Software Licensing argues.

Jul 28, 2025 By Ryan Triplette

A sign is seen at Microsoft headquarters on July 3, 2024, in Redmond, Washington. (David Ryder/Getty Images)

Microsoft SharePoint attacks ensnare 400 victims, including federal agencies

The Departments of Energy, Homeland Security and Health and Human Services have been impacted.

Jul 24, 2025 By Matt Kapko

(Photo by John Smith/VIEWpress/Getty Images)

Microsoft SharePoint zero-day attacks pinned on China-linked ‘Typhoon’ threat groups

Linen Typhoon, Violet Typhoon and Storm-2603 are behind the initial attack spree that erupted over the weekend. Other threat groups are now following suit.

Jul 22, 2025 By Matt Kapko

Mass attack spree hits Microsoft SharePoint zero-day defect

Attackers have already used the exploit dubbed “ToolShell” to intrude hundreds of organizations globally, including private companies and government agencies.

Jul 21, 2025 By Matt Kapko