CISA added CVE-2026-45659 SharePoint Server RCE to KEV following confirmed exploitation, requiring U.S. agencies to patch by ...
Talos details ARToken, a PhaaS panel tied to EvilTokens that supports device code phishing, BEC workflows, SharePoint theft, ...
This sneaky attack tricks Microsoft's AI assistant to hand over your data.
Last Tuesday, Microsoft patched a vulnerability it rated as max critical in its M365 Copilot AI platform. On Monday, the researchers who discovered the vulnerability and reported it to Microsoft ...
A critical vulnerability chain dubbed SearchLeak in Microsoft 365 Copilot Enterprise could allow attackers to steal sensitive data from a target's mailbox, OneDrive, or SharePoint account through a ...
Security firm Varonis discovered a critical vulnerability in Microsoft 365 Copilot, named SearchLeak, which allowed malicious actors to steal sensitive enterprise data via a single link. By exploiting ...
In 2024 or earlier, Microsoft was working on a Copilot-focused operating system codenamed "Aion," which is web-based.
Microsoft this week released 206 updates affecting Windows, Office, Exchange Server, and its developer tools — including three Windows vulnerabilities already publicly disclosed. That trio includes an ...
Microsoft announced the Azure Functions serverless agents runtime in public preview at Build 2026, turning the event-driven compute service into a platform for building and hosting AI agents. The ...