Microsoft Experiences Major Service Outage Affecting Copilot and Office.com
Posted inCybersecurity News

Microsoft Experiences Major Service Outage Affecting Copilot and Office.com

Microsoft is currently grappling with a significant service disruption that has left thousands of users unable to access key productivity platforms, including Office.com and the company's AI-powered Copilot assistant. The outage, which began in the early morning hours of August 20, 2025, has primarily impacted customers across North America, though the full scope of the incident remains under investigation.
Microsoft August 2025 Security Update Addresses Critical Kerberos Vulnerability Among 111 Total Flaws.
Posted inCybersecurity News

Microsoft August 2025 Security Update Addresses Critical Kerberos Vulnerability Among 111 Total Flaws.

Microsoft's August 2025 Patch Tuesday release represents one of the most comprehensive security updates of the year, addressing 111 security vulnerabilities across the company's software portfolio. This substantial update includes fixes for 107 vulnerabilities in core Windows and Microsoft software products, with an additional 16 vulnerabilities addressed in Microsoft's Chromium-based Edge browser.
Microsoft introduces Project Ire: AI prototype for analysis and classification of malware.
Posted inCybersecurity News

Microsoft introduces Project Ire: AI prototype for analysis and classification of malware.

Microsoft has introduced Project Ire, a cutting-edge AI prototype designed to revolutionize the analysis and classification of software, particularly malware, without human intervention. This ambitious initiative harnesses the power of large language models (LLMs), decompilers, and specialized analysis tools, automating the gold standard of malware classification—comprehensive reverse engineering of unknown software files.
Microsoft’s Zero Day Quest hacking contest booty increased to $5 million.
Posted inCybersecurity News

Microsoft’s Zero Day Quest hacking contest booty increased to $5 million.

Microsoft has raised the stakes for its flagship security competition, announcing that the prize pool for the 2025 Zero Day Quest hacking contest will be increased to $5 million. This represents the largest reward the company has ever offered for a public security research event, surpassing last year’s total by $1 million. The move underscores Microsoft’s commitment to attracting top security talent and driving innovation in vulnerability research.
Discord’s CDN exploited to deliver a Remote Access Trojan (RAT) disguised as a legitimate OneDrive file.
Posted inCybersecurity News

Discord’s CDN exploited to deliver a Remote Access Trojan (RAT) disguised as a legitimate OneDrive file.

A recent cybersecurity investigation has revealed a sophisticated phishing campaign leveraging Discord’s Content Delivery Network (CDN) to distribute Remote Access Trojan (RAT) malware disguised as legitimate Microsoft OneDrive files. This campaign primarily targets Microsoft 365 users and underscores the evolving tactics employed by cybercriminals to bypass conventional security measures.
China accuses U.S. intelligence agencies of exploiting Microsoft zero-day vulnerability in cyberattack against key Chinense military enterprises.
Posted inCybersecurity News

China accuses U.S. intelligence agencies of exploiting Microsoft zero-day vulnerability in cyberattack against key Chinense military enterprises.

Chinese authorities today publicly accused U.S. intelligence agencies of orchestrating cyberattacks against two of China’s key military enterprises. According to the Cyber Security Association of China, the attacks reportedly exploited a previously unknown "zero-day" vulnerability in Microsoft Exchange email server software.
Microsoft’s DragonV2.1Neural approaches near instantaneous vocal generation, raising security concerns over AI-driven speech synthesis.
Posted inCybersecurity News

Microsoft’s DragonV2.1Neural approaches near instantaneous vocal generation, raising security concerns over AI-driven speech synthesis.

Microsoft’s DragonV2.1Neural represents a significant leap forward in zero-shot text-to-speech (TTS) technology, now powering the Azure AI Speech Service. By combining scalability, expressiveness, and multilingual proficiency, DragonV2.1Neural is redefining the standards in AI-driven speech synthesis—while also raising urgent ethical and security considerations.
Microsoft to pay big(ger) bucks for .Net bug bounty rewards. Up to $40k for critical vulnerabilities!
Posted inCybersecurity News

Microsoft to pay big(ger) bucks for .Net bug bounty rewards. Up to $40k for critical vulnerabilities!

Microsoft has significantly increased its bug bounty rewards for researchers who discover and responsibly disclose high-impact security vulnerabilities within the .NET and ASP.NET Core platforms. Under the latest update to its bug bounty program, the tech giant now offers rewards of up to $40,000 for the most severe vulnerabilities, such as those enabling remote code execution and privilege escalation.
Sploitlight macOS security flaw disclosed by Microsoft Threat Intelligence team because… of course.
Posted inCybersecurity News

Sploitlight macOS security flaw disclosed by Microsoft Threat Intelligence team because… of course.

A serious security flaw in macOS, identified as CVE-2025-31199 and dubbed “Sploitlight,” has been disclosed by Microsoft’s Threat Intelligence team. This vulnerability, now patched by Apple, targeted the Spotlight search engine’s plugin system and exposed sensitive user data, including information cached by the latest Apple Intelligence features.