malicious links

Microsoft Teams is rolling out two platform-level protections meant to stop weaponized files and scammy links from arriving in users’ chats and channels, a change that shifts the battleground for collaboration security from reactive investigation to proactive blocking. Background Microsoft’s...

Microsoft Teams is getting a tighter security posture: Microsoft is rolling out new protections that will block weaponizable file types in chats and channels, scan and warn about malicious URLs at the time of delivery and click, and extend administrative control by integrating Teams with the...

A critical security vulnerability, identified as CVE-2025-8578, has been discovered in Google Chrome's Cast component, affecting versions prior to 139.0.7258.66. This "use after free" flaw poses significant risks, including potential heap corruption and arbitrary code execution, if exploited by...

Attackers have found a chillingly effective way to subvert defenses integrated into the heart of enterprise email security. According to new research from Cloudflare, threat actors are actively exploiting “link wrapping” services—offered by reputable vendors like Proofpoint and Intermedia—to...

In recent developments, cybersecurity firm East Security has identified a sophisticated phishing campaign that impersonates Microsoft's multi-factor authentication (MFA) processes. This attack leverages QR codes to deceive users into divulging their Microsoft 365 credentials, highlighting the...

Windows Installer, a core component of the Microsoft Windows ecosystem, has once again come under scrutiny due to the disclosure of a new vulnerability, tracked as CVE-2025-33075. This security flaw, caught by Microsoft and detailed publicly in their security update guide, centers around...

Phishing attacks have long exploited trusted platforms to deceive users, and a recent campaign has brought to light a particularly insidious method: leveraging Google Apps Script to compromise Microsoft 365 accounts. This tactic underscores the evolving sophistication of cyber threats and the...

In recent developments, cybersecurity researchers have uncovered a sophisticated malware campaign targeting Microsoft Windows users. Attackers are deploying deceptive websites that mimic popular brands to trick individuals into downloading malicious applications. These counterfeit sites often...

Hackers are once again proving that even the latest technological marvels can become Trojan horses for cybercriminals. Recent reports reveal that threat actors are exploiting Microsoft Copilot—a generative AI assistant designed to help users with everything from transcribing emails to drafting...

The growing adoption of generative AI in the workplace has ushered in sweeping changes across industries, delivering newfound efficiencies and innovative capabilities. Yet, with each leap toward automation and intelligence, a parallel, shadowy world of cyber threats surges ahead. A recent...

Microsoft's recent April 2025 patch for Windows introduced a curious and controversial change that has IT administrators and security experts buzzing—a mysterious "inetpub" folder appearing by default on systems, including those not using Internet Information Services (IIS). Far from a mere...

Severity Rating: Moderate Revision Note: V1.0 (October 11, 2016): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker successfully convinces a user of an affected system to visit a...

Original release date: December 03, 2015 Systems Affected Microsoft Windows Overview Dorkbot is a botnet used to steal online payment, participate in distributed denial-of-service (DDoS) attacks, and deliver other types of malware to victims’ computers. According to Microsoft, the family of...

With Microsoft Edge, we want to fundamentally improve security over existing browsers and enable users to confidently experience the web from Windows. We have designed Microsoft Edge to defend users from increasingly sophisticated and prevalent attacks. This post covers some of the advanced...

Today, we released Security Advisory 2934088 regarding an issue that impacts Internet Explorer 9 and 10. Internet Explorer 6, 7, 8 and 11 are not affected. At this time, we are only aware of limited, targeted attacks against Internet Explorer 10. This issue allows remote code execution if users...

Severity Rating: Important Revision Note: V1.1 (May 15, 2013): Corrected link to the download location in the Detection and Deployment Tools and Guidance section. This is an informational change only. Summary: This security update resolves a privately reported vulnerability in Windows Writer...

Hello, Today we released Security Advisory 2488013 to address a public vulnerability that could affect customers using Internet Explorer 6, 7 and 8 if they visit a website hosting malicious code. Currently the impact of this vulnerability is limited and we are not aware of any affected...

Source: Link Removed