New ConsentFix attack hijacks Microsoft accounts via Azure CLI

A new variation of the ClickFix attack dubbed 'ConsentFix' abuses the Azure CLI OAuth app to hijack Microsoft accounts without the need for a password or to bypass multi-factor authentication (MFA) ...
Microsoft

New Microsoft e-book: 3 reasons point solutions are holding you back

Explore the new Microsoft e-book on how a unified, AI-ready platform delivers speed, resilience, and measurable security ...

Shut Down And Restart—New Microsoft Attack Beats Passwords, 2FA And Passkeys

Check Point explains that this new technique “tricks people into giving attackers access to their Microsoft accounts. The ...

Microsoft’s Patch Tuesday: 57 Flaws Fixed

KB5072033 addresses vulnerabilities across Windows systems and Office applications—including one actively exploited zero-day.
CSO Online

Microsoft flips security script: ‘In scope by default’ makes all vulnerabilities fair game for bug bounties

The company’s new approach is that anything touching Microsoft services is eligible for a bug bounty, regardless of its ...
Stocktwits on MSN

Microsoft’s historic Canadian expansion aims to secure AI future – why the dedicated threat intelligence hub matters

Microsoft’s plan aims to strengthen Canada’s AI and cloud infrastructure, boosting services for both public and private ...
Bleeping Computer

Microsoft: Security keys may prompt for PIN after recent updates

Microsoft warned users on Tuesday that FIDO2 security keys may prompt them to enter a PIN when signing in after installing Windows updates released since the September 2025 preview update. This ...
Forbes

‘Security Disaster’—500 Million Microsoft Users Say No To Windows 11

Forbes contributors publish independent expert analyses and insights. Zak Doffman writes about security, surveillance and privacy. Microsoft’s “looming security disaster” is worse than feared. A ...
PC Gamer

Microsoft confirms that its new AI agent in Windows 11 hallucinates like every other chatbot and poses security risks to users

Hallucinating, hack-prone operating systems are the new normal. When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. As to the details, Microsoft says ...
Cloud Security Alliance

Microsoft Entra ID Vulnerability: The Discovery That Shook Identity Security

An in-depth examination of the Microsoft Entra ID vulnerability exposing tenant isolation weaknesses, MFA gaps, and ...
Inside Unmanned Systems

Defending the Skies: Lockheed Martin and Microsoft Collaborate on Next-Gen C-UAS Technologies

Microsoft is joining with Lockheed Martin to develop Sanctum -- counter-Unmanned Aerial Systems (C-UAS) capabilities that ...
ZDNet

How to get free Windows 10 security patches on your PC - from now to October 2026

Windows 10 PCs can receive free security updates until October 2026. To qualify for free personal updates, enroll with a Microsoft account. Customers in any of the 30 EEA countries automatically ...