graph api

When a Dutch researcher glanced at a token stream while preparing a Black Hat talk, he didn’t just find a bug—he found a fault line in the foundations of cloud identity that could have allowed a single click to flip virtually every Microsoft Entra (Azure AD) tenant from secure to owned. The...

Microsoft’s release of a Windows SDK for Facebook — a native, open-source library that brings full Facebook login, Graph API access, feeds, photo uploads and Like functionality into Universal Windows apps — marks a deliberate push to make Windows a more attractive, social-first platform for...

Microsoft is taking the first concrete step in its phased enforcement of the dedicated Exchange hybrid app requirement: on September 16, 2025 at 07:00 UTC Microsoft will temporarily block Exchange Web Services (EWS) traffic that uses the Exchange Online shared service principal for hybrid...

A publicly exposed appsettings.json file that contained Azure Active Directory application credentials has created a direct, programmatic attack path into affected tenants — a misconfiguration that can let attackers exchange leaked ClientId/ClientSecret pairs for OAuth 2.0 access tokens and then...

Microsoft has moved the revamped Message Trace experience in Exchange Online out of preview and into general availability, bringing a faster UI, new PowerShell cmdlets, extended query windows, and new operational constraints that will change how administrators automate and extract trace data...

Microsoft's updated Exchange hybrid guidance — and a last‑minute change to the enforcement cadence — should be on every hybrid admin’s radar: the Exchange team has expanded the push to migrate hybrid traffic away from the long‑standing Exchange Online shared service principal into a tenant‑owned...

Microsoft’s Exchange team has given hybrid administrators a clear-but-urgent migration mandate: switch to the dedicated Exchange hybrid app and update on‑prem servers now, or face temporary disruptions in September and October followed by a permanent enforcement that will stop rich coexistence...

Microsoft 365 Copilot can now tap enterprise file shares without forcing a wholesale migration to the cloud: NetApp’s new connector brings on‑prem and cloud NetApp data into Copilot while preserving item‑level security, offering containerized deployment options, and promising high performance...

Chemist Warehouse has quietly added a digital colleague to its HR team — an AI assistant named AIHRA that drafts responses to hundreds of routine HR queries each week, reshaping how the retail pharmacy giant manages volume, preserves specialist time, and rethinks talent retention across a...

Microsoft’s August Patchday reads like a wake‑up call: a newly disclosed Kerberos-related weakness tied to the delegated Managed Service Account (dMSA) feature in Windows Server 2025 can — under the right conditions — let an attacker escalate to domain‑admin control, and a clutch of additional...

HID is bringing enterprise-grade passkeys to the mainstream, unveiling a refreshed line of FIDO2 authenticators alongside a new Enterprise Passkey Management (EPM) service designed to provision, monitor, and revoke credentials centrally at scale. The announcement introduces redesigned Crescendo...

A significant security vulnerability has been identified in Synology's Active Backup for Microsoft 365 (ABM), potentially exposing sensitive data across all Microsoft 365 tenants utilizing this backup solution. This flaw, designated as CVE-2025-4679, was discovered by the security firm ModZero...

Microsoft just dropped its April 2025 Hotfix Updates for Exchange Server 2019 and 2016, and let’s be honest: if you’re an IT pro managing one of these beasts, you probably just felt a chill run down your spine. Yes, once again, Microsoft’s keeping us all on our toes—and by “on our toes,” I mean...

Brace yourselves, Windows community! Starting January 2025, Microsoft will implement a significant change to the Search-UnifiedAuditLog cmdlet in Exchange Online. This isn’t just a minor tweak; it’s a structural shift that every IT admin, engineer, and Microsoft 365 aficionado needs to pay...

I am extremely excited to announce the latest update of the UWP Community Toolkit, v2.2. The credit for this release, as always, goes to the community, who have continued to support and improve the toolkit for each release. V2.2 introduces a new Parsers package, new controls and helpers, and...

We’re pleased to announce a new open source library for integrating Facebook into your Windows apps. The Windows SDK for Facebook is geared towards app developers creating Universal Windows apps on both desktop and phone. The SDK supports universal Windows app for Windows Phone 8.1, Windows 8.1...

We have moved ahead with our agenda in several areas for September. Members can enjoy changes in the following areas: Post Messages Using Windows Live ID, Facebook, Yahoo!, and AOL As we proposed today, members can use the Facebook Graph API (and therefore the OpenGraph API) to post messages...