Cybercriminals are exploiting Microsoft Teams notifications to push callback phishing scams, tricking users into calling fake support lines.
These attacks use legitimate-looking invites from the official Teams sender address, no-reply@teams.mail.microsoft, which often slips past email filters and user caution.
Recent alerts from Trustwave's SpiderLabs...
Microsoft has confirmed user interface glitches in Windows 11 versions 24H2 and 25H2 following monthly cumulative updates released on or after July 2025, such as KB5062553 and KB5065789.
These problems disrupt XAML-dependent modern apps, including File Explorer, the Start menu, System Settings, Taskbar, and...
Microsoft has officially acknowledged a display bug affecting Windows 11 version 24H2 users after installing recent cumulative updates, particularly those released since August 2025.
The issue causes the password icon to vanish from the lock screen sign-in options, creating confusion for users attempting to...
A proof-of-concept (PoC) exploit for CVE-2024-21413, a critical remote code execution (RCE) flaw in Microsoft Outlook dubbed "MonikerLink," has been released publicly on GitHub, enabling researchers to test the vulnerability in controlled lab environments.
This zero-click issue, with a CVSS v3.1 score of 9.8...
Microsoft announced a significant security upgrade for Microsoft Entra ID authentication on November 25, 2025, via its Entra Blog.
The change blocks external script injection during sign-ins to help combat threats such as cross-site scripting (XSS).
This proactive step aligns with Microsoft's Secure Future...
Attackers can abuse Microsoft Teams guest chat to lure employees into “protection‑free” environments where Defender for Office 365 no longer shields them from malicious links or files.
The issue stems from how cross‑tenant collaboration is designed, not from an exploitable bug in Teams itself.
How...