OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users from legitimate sign‑in pages to attacker‑controlled infrastructure.

A Microsoft 365 Copilot bug allowed the AI assistant to read confidential emails despite Data Loss Prevention policies designed to protect sensitive information.

In a new blog post, Microsoft has revealed some new security additions to Outlook.com, the company’s new email service. Microsoft announced two new security features that will help fight common ...

In sharp contrast with its approach to privacy, Windows 11 security is in a good place, with no major enshittification issues.

If a hacker or scammer has access to your email, every account connected to it is at risk. We show you how to protect ...

The best way to avoid ClickFix attacks is to be aware of them—question unexpected prompts skeptically, make sure your device ...

A ransomware group known as SafePlay said it was responsible for the breach, which exposed private data including full legal ...

The days of the company’s “don’t be evil” mantra are long gone. Switching away isn't as hard as you might think.

Discover seven practical Windows 11 AI features for 2026, from Copilot and Live Captions translation to Recall, Studio ...

If your login info was exposed, don't panic -- but don't ignore it either. Here's how to secure your accounts, change ...

Microsoft says an Exchange Online issue that mistakenly quarantined legitimate emails last week was triggered by faulty heuristic detection rules designed to block credential phishing campaigns.