exchange online

Microsoft’s August 2025 hotfixes for Skype for Business Server introduce a security-first change that will force organizations with hybrid deployments to act quickly: a new, customer-managed Dedicated Hybrid Application model replaces the long-standing Microsoft-managed shared service principal...

A new wave of cybersecurity urgency is sweeping through IT departments as the Cybersecurity and Infrastructure Security Agency (CISA) issues a fresh, high-severity warning concerning Microsoft Exchange Server. The alert, centered around CVE-2025-53786, underscores a newly disclosed vulnerability...

A critical security vulnerability, identified as CVE-2025-53786, has been discovered in hybrid deployments of Microsoft Exchange Server. This flaw allows attackers with local administrative access to escalate their privileges within connected cloud environments, posing significant risks to...

A high-severity security vulnerability has emerged at the heart of countless enterprise communications: Microsoft has issued a warning about a flaw in hybrid Exchange Server deployments that could give cyber attackers undetected escalated access to Exchange Online—potentially undermining the...

A high-severity vulnerability, designated CVE-2025-53786, has sent urgent ripples through the IT and cybersecurity communities as organizations relying on Microsoft’s hybrid Exchange deployments face a new vector for privilege escalation and potential domain-wide compromise. Microsoft has...

Microsoft has announced a significant policy change affecting organizations using legacy versions of Exchange Server. Starting October 1, 2025, the company will block native public folder migrations from Exchange Server 2010 and earlier to Exchange Online. This move is part of Microsoft's...

Organizations increasingly face the challenge of distributing vital information to vast internal audiences, whether via automated alerts, system notifications, or large-scale transactional communications. For enterprise IT teams running on Microsoft 365, the recent introduction of Exchange...

For legacy Exchange administrators—the end is no longer nigh, it is officially on the calendar. From October 1, 2025, Microsoft will block all public folder migrations from Exchange Server 2010 and earlier to Exchange Online, halting a migration path that has long served as a lifeline for...

Microsoft has announced an extension of its security update programs for Exchange Server 2016 and 2019, as well as Skype for Business Server 2015 and 2019. This decision comes in response to customer feedback indicating that while many organizations have initiated migrations to newer platforms...

For nearly a week, users across Germany found themselves facing persistent difficulties accessing their Outlook.com mailboxes and Outlook clients, sparking mounting frustration among both private individuals and business organizations. What started last Thursday as sporadic reports of connection...

As Microsoft Exchange Server 2016 and 2019 approach their end-of-support dates on October 14, 2025, organizations must proactively plan to ensure their email systems remain secure, compliant, and functional. For privacy-conscious organizations, this transition presents both challenges and...

As Microsoft Exchange Server 2016 and 2019 approach end-of-support in October 2025, countless organisations find themselves at a digital crossroads, compelled to confront deep strategic questions about the future of their communication infrastructure. The clock is ticking for IT leaders: it’s no...

For many organizations relying on Microsoft 365, even brief interruptions to core service components can have a ripple effect on productivity, security, and trust. Recently, Microsoft was forced to confront yet another challenge related to the Domain Name System (DNS)—a core pillar of internet...

In a sobering development for the cloud security landscape, new research has exposed how Microsoft 365’s Direct Send feature—a tool primarily designed for seamless internal communication—has become a significant vector for phishing attacks. As organizations of all sizes deepen their reliance on...

A new wave of phishing attacks has cast a harsh spotlight on the security assumptions underlying Microsoft 365, as cybercriminals adapt with alarming speed to exploit lesser-known features. Over the past two months, a sophisticated campaign has targeted more than 70 organizations across critical...

Microsoft 365 tenants across the United States have recently become the focal point of a sophisticated, widespread phishing campaign that leverages a rarely-discussed but highly impactful vulnerability in Exchange Online’s Direct Send feature. Security researchers have confirmed that, since May...

Microsoft is set to implement significant security enhancements within its Microsoft 365 suite by blocking various legacy authentication protocols starting mid-July 2025. This initiative is part of the company's Secure Future Initiative (SFI) and Secure by Default strategy, aiming to bolster the...

A significant Microsoft 365 outage unfolded this week, bringing to light the enormous risks and critical dependencies that define today’s cloud-based productivity landscape. The episode—traced with case identifier MO1096211 and followed breathlessly on social media and Microsoft’s own Service...

In the evolving landscape of digital communication, email security remains a critical front in the ongoing battle against cyber threats. Microsoft Outlook, the flagship email client serving hundreds of millions globally, has not just become a cornerstone of enterprise productivity but also a...

Microsoft has announced a significant update regarding the deprecation of Basic Authentication (Basic Auth) for Exchange Online's Client Submission (SMTP AUTH). Originally slated for permanent removal in September 2025, the timeline has been extended to begin on March 1, 2026, with complete...