Microsoft patches CVE-2026-20841, a high-severity Windows Notepad flaw that could allow code execution via malicious Markdown files.

AI agents now operate across enterprise systems, creating new risk via prompt injection, plugins, and persistent memory. Here ...

The blog recommended that users learn to train their own AI models by downloading the Harry Potter dataset and then uploading text files to Azure Blob Storage. It included example models based on a ...

Unwitting employees register a hacker’s device to their account; the crook then uses the resulting OAuth tokens to maintain persistent access.

Copilot caught peeking? A bug reportedly let the AI read confidential enterprise emails it was never meant to see. A complete fix is still not available.

AI assistants like Grok and Microsoft Copilot with web browsing and URL-fetching capabilities can be abused to intermediate ...

CRN’s Security 100 list of the coolest web, email and application security companies includes AI-powered vendors protecting email inboxes and web browsers along with providers of modern code security.

Three of the four vulnerabilities remained unpatched months after OX Security reported them to the maintainers.

Most API vulnerabilities are fast, remote, and easy to exploit. Attackers take full advantage of these attributes.

IT admins will be busy this month patching Microsoft software and apps, but not nearly as busy as they were in January.

Copilot Studio agents are increasingly powerful. With that power comes risk: small misconfigurations, over‑broad sharing, unauthenticated access, and weak orchestration controls can create real ...

A Microsoft Outlook add-in was abandoned and taken over by hackers, who used it to collect email accounts and banking data.