The Microsoft Defender Security Research Team has confirmed that a pervasive new authentication code attack is compromising hundreds of organizations daily.

Microsoft eliminates SMS codes for personal accounts due to SIM-swapping vulnerabilities, replacing them with more secure ...

Microsoft is ending SMS login codes for personal accounts and replacing them with passkeys, authenticator apps, and backup ...

Following the release of a BitLocker zero-day security bypass by a disgruntled hacker, Microsoft has now offered mitigation advice until a patch is available.

Microsoft Corp's MSFT subsidiary GitHub is investigating a suspected cyberattack after the threat actor known as TeamPCP ...

The Tycoon2FA phishing kit now supports device-code phishing attacks and abuses Trustifi click-tracking URLs to hijack ...

Microsoft's new vulnerability-scanning system, codenamed MDASH, scored 88.45% on the CyberGym benchmark, surpassing ...

Microsoft has unveiled a new AI-driven vulnerability discovery system that identified 16 previously unknown Windows ...

GitHub confirmed attackers stole 3,800 internal repositories via a poisoned VS Code extension. The same threat group, TeamPCP ...

Today is Microsoft's May 2026 Patch Tuesday, with security updates for 120 flaws and no zero-days disclosed this month.

Microsoft’s May Patch Tuesday fixes 120 flaws, including 31 remote code execution bugs, with no zero-days reported at release ...