SecurityWeek

Microsoft Patches Office Zero-Day Likely Exploited in Targeted Attacks

Microsoft released patches for CVE-2026-21509, a new Office zero-day vulnerability that can be exploited to bypass security ...

Microsoft patches actively exploited Office zero-day vulnerability

Microsoft has released emergency security updates to patch a high-severity Office zero-day vulnerability exploited in attacks ...

Microsoft, Apple, Google And Amazon Accounts Under Attack—Act Now

A new report from Check Point warns that last quarter, “ Microsoft once again ranked as the most impersonated brand in phishing attacks, accounting for 22% of all brand phishing attempts.” This ...
The Hacker News

Microsoft Flags Multi-Stage AitM Phishing and BEC Attacks Targeting Energy Firms

Microsoft reports a multi-stage AitM phishing and BEC campaign abusing SharePoint, inbox rules, and stolen session cookies to ...

How ‘Reprompt’ Attack Let Hackers Steal Data From Microsoft Copilot

Varonis found a “Reprompt” attack that let a single link hijack Microsoft Copilot Personal sessions and exfiltrate data; ...