email security

In recent developments, cybersecurity researchers have uncovered a critical vulnerability in Microsoft Copilot, an AI-powered assistant integrated into Office applications such as Word, Excel, Outlook, and Teams. Dubbed "EchoLeak," this flaw enables attackers to exfiltrate sensitive data from a...

Microsoft has recently announced the addition of two significant data tables—CampaignInfo and FileMaliciousContentInfo—to its Defender XDR advanced hunting capabilities. This enhancement aims to bolster threat detection and investigation within Microsoft 365 environments, providing security...

Outlook users are about to experience a new layer of email security as Microsoft expands its efforts to safeguard users from sophisticated attack vectors. In July, Microsoft will block two additional file attachment types—.library-ms and .search-ms—within Outlook, specifically targeting the...

As Microsoft continues its campaign to tighten security across its productivity platforms, Outlook users will soon notice new restrictions designed to combat sophisticated phishing attacks and malware infiltration attempts. Beginning July 2025, the company will expand the list of blocked file...

In a continuous effort to bolster email security, Microsoft has announced an expansion of its list of blocked file types for attachments in Outlook on the Web and the New Outlook for Windows. Starting in early July 2025, the company will add two new file extensions to the BlockedFileTypes list...

In early 2025, a critical security vulnerability identified as CVE-2025-47176 was discovered in Microsoft Outlook, posing significant risks to users worldwide. This flaw allows authorized attackers to execute arbitrary code on a victim's system by exploiting a specific path traversal sequence...

Microsoft Outlook, as one of the most widely adopted email clients across enterprise and consumer environments, frequently finds itself at the center of security research and, consequently, vulnerability bulletins. Cases of remote code execution (RCE) vulnerabilities within Outlook have...

Rocketseed has announced new enhancements for its Microsoft 365 email signature management add-in, aimed specifically at improving the mobile experience for both senders and recipients. Here’s a summary of the main points from the release: Key Enhancements: Signature on Compose for Mobile...

Protecting your digital identity has never been more important—or more challenging. With personal data breaches, spam deluges, and rampant ad tracking now part of everyday digital life, even tech-savvy users often find themselves searching for new layers of privacy and control. Over the years...

Implementing Domain-based Message Authentication, Reporting, and Conformance (DMARC) in Microsoft 365 is a critical step toward enhancing email security by preventing domain spoofing and phishing attacks. However, the process is fraught with challenges that can complicate deployment and...

Microsoft’s ongoing campaign to shift users from the venerable classic Outlook desktop client toward its new Outlook for Windows app underscores both the company’s commitment to modernity and the challenges inherent in remaking a legacy productivity tool. The June 2025 refresh of the new Outlook...

Microsoft has once again placed its commitment to refining cloud management tools into action, introducing a sweeping redesign to one of the most heavily used components in Exchange Online: Message Trace. This update, which began rolling out earlier this month, promises to overhaul how...

The relentless evolution of Microsoft’s digital workspace continues with the June 2025 update to the new Outlook for Windows, marking a dramatic step forward in both compatibility and artificial intelligence integration. This update isn’t just another batch of incremental improvements—it’s a...

The June update to Microsoft’s new Outlook marks a substantial shift in the software’s trajectory, directly responding to persistent criticism that followed the launch of its web-based incarnation. For months, professionals, power users, and everyday individuals alike have lamented missing...

Microsoft has once again signaled its relentless commitment to refining user experience with the June 2025 update for the new Outlook on Windows—a release that, while still surrounded by a sense of ambivalence from longtime Outlook fans, delivers a meaningful suite of feature enhancements and...

For many years, Microsoft Outlook has held the title of the business world’s de facto email client, synonymous with the broader Microsoft 365 productivity ecosystem. The ongoing transformation of Outlook, especially the controversial shift from the classic native app to a web-based experience...

Phishing attacks continue to evolve, leveraging not only increasingly sophisticated social engineering techniques but also the legitimate tools and platforms users trust every day. The most recent wave of attacks, as publicized by cybersecurity researchers and industry reports, reveals that...

Phishing attacks have long exploited trusted platforms to deceive users, and a recent campaign has brought to light a particularly insidious method: leveraging Google Apps Script to compromise Microsoft 365 accounts. This tactic underscores the evolving sophistication of cyber threats and the...

Phishing attacks are evolving at a rapid pace, becoming increasingly sophisticated, and exploiting trusted platforms in ways that challenge even tech-savvy users. Recently, cybersecurity researchers uncovered a troubling new scam leveraging Google Apps Script—a legitimate Google service—to...

As phishing threats continue to evolve, attackers are leveraging increasingly sophisticated methods that use legitimate cloud platforms to disguise their malicious campaigns. Recent research has uncovered a worrying trend: the abuse of Google Apps Script as a vehicle for launching convincing...