Windows 10 refuses to die, and the security bill is coming due
One in six machines still run the old OS as migration stalls and patch deadlines creep closer
Microsoft software and cloud platforms underpin enterprise systems, so vulnerabilities and security advisories can affect identity, data, and operations.
Search across headline titles and summaries.
Background for this topic.
Microsoft is a technology company whose Windows, Microsoft 365, Azure, identity services, and developer tools form a widely deployed enterprise computing ecosystem. Its security relevance spans endpoint and server software, cloud control planes, authentication, collaboration data, and the update mechanisms used to maintain them.
Security news under this tag commonly concerns vulnerabilities requiring patching, exploits against exposed services, identity or token compromise, and misconfiguration of cloud permissions or authentication policies. Practitioners should verify affected versions and exposure, apply updates or mitigations, enforce multifactor authentication and least privilege, and monitor relevant audit logs. Incidents involving Microsoft-hosted identities or data may require rapid session and credential containment, investigation across cloud and on-premises systems, and assessment of privacy or regulatory obligations.
Weekly headline count for the current query.
One in six machines still run the old OS as migration stalls and patch deadlines creep closer
Mega hardware vendor reports problems - but Windows maker isn't yet naming affected models
Experts say it’s a useful post-compromise tool, for those with the brain cells required to put it together
Remember when last month's 206 CVEs seemed eye-watering? Yeah, those were the days
Microsoft says GigaWiper combines at least 3 malware families into one modular tool
More patches mean more reasons to buy Redmond’s auto-patching tools
Weeks after the exploit code dropped, Redmond has finally ships a fix for the Defender zero-day
Along with other telemetry, Windows GDID makes online activity more traceable
Unit 42 says attackers are posing as helpdesk staff and persuading employees to hand over remote control before dropping EtherRAT trojan
Attackers need little more than a valid SharePoint account to execute code on vulnerable on-prem servers
Allows ISVs to put their names on the door so desirable bots always get in
In the Azure Edition, of course
Microsoft says latest attack targets Leo Platform and RStreams packages, harvesting creds and going after more maintainers
200+ C2 servers linked to StealC and Amadey shut down
Infosec buffs say Windows users could have been infected with a nasty trojan, while Mac users got off lightly
Custom malware routed communications through legitimate Microsoft services, making malicious activity look like routine corporate collaboration
Connectivity checker trips browser alarms thanks to lapsed security paperwork
And it was Microsoft Copilot that unwittingly revealed the longstanding vulnerability
And it was Microsoft Copilot that unwittingly revealed the longstanding vulnerability
Another day, another Windows exploit code