microsoft 365 security

Microsoft has published CVE-2026-32185 as a Microsoft Teams spoofing vulnerability in the Security Update Guide, and as of May 12, 2026, the public framing is less about a dramatic exploit chain than about a confirmed trust-boundary failure in a collaboration platform used inside millions of...

On May 12, 2026, Microsoft published CVE-2026-41101 as a spoofing vulnerability affecting Microsoft Word for Android, with the Security Update Guide entry confirming the product, impact category, and vendor acknowledgement while offering only limited public technical detail about the underlying...

Microsoft is rolling out a Purview Insider Risk Management feature in May and June 2026 that lets authorized enterprise security teams view risky AI prompts and responses in plaintext, including cases where the employee identity remains pseudonymized until a privileged reviewer chooses to...

Microsoft will begin blocking Exchange Online POP3 and IMAP4 client connections that still negotiate TLS 1.0 or TLS 1.1 in July 2026, ending the legacy endpoint escape hatch it created for organizations unable to move older mail clients to TLS 1.2 or newer. The decision is less a surprise than a...

Bonfy’s launch of Adaptive Content Security 2.0 lands at exactly the point where enterprise AI adoption is colliding with old-school data security assumptions. The company is betting that the next major security problem is not just who has access to data, but what autonomous and semi-autonomous...

Microsoft has confirmed that a recent Current Channel update to Classic Outlook (Version 2511, Build 19426.20218) introduced a regression that prevents recipients from opening messages protected with Encrypt Only permissions, leaving affected users seeing an unreadable rpmsg attachment instead...

Microsoft’s Baseline Security Mode introduces a single, opt‑in “secure‑by‑default” posture for Microsoft 365 that packages identity hardening, file‑safety controls, and meeting‑room device protections into a single, admin‑facing experience — and it arrives with simulation tools and telemetry to...

Maester arrived as a simple idea with a practical purpose: treat cloud configuration like code and test it continuously so Microsoft 365 and Entra administrators stop discovering broken security only after an incident exposes the gap. Background Cloud configuration drift is a persistent...

Microsoft Teams is getting a tighter security posture: Microsoft is rolling out new protections that will block weaponizable file types in chats and channels, scan and warn about malicious URLs at the time of delivery and click, and extend administrative control by integrating Teams with the...

A new era of cyber resilience for Microsoft 365 environments is taking shape as Sophos and Rubrik unveil a pioneering integrated backup and recovery service. This collaboration, crystallized in the launch of Sophos M365 Backup and Recovery Powered by Rubrik, dramatically elevates data protection...

Threat actors have escalated their tactics by exploiting the Microsoft 365 Direct Send feature, fundamentally altering the landscape of email-based cyber attacks. As organizations increasingly rely on Microsoft 365 for critical communications, this emerging threat leverages a trusted service to...

A new era of cyber resilience for Microsoft 365 is taking shape as Rubrik and Sophos unveil an integrated solution set to redefine how organizations defend and recover their business-critical data. Their partnership signals a major shift in the threat response landscape, blending data protection...

A seismic shift in enterprise cyber resilience is underway as Rubrik and Sophos unveil a groundbreaking partnership aimed at fortifying Microsoft 365 environments against a rising tide of threats. The newly announced "Sophos M365 Backup and Recovery Powered by Rubrik" integrates Rubrik’s robust...

A sweeping transformation is underway in how enterprises approach digital continuity and cyber resilience, as Sophos unveils its MDR-optimised Microsoft 365 Backup and Recovery solution powered by Rubrik. In a move hailed by industry leaders as reshaping operational security, the partnership...

In a significant move poised to refocus how organizations manage data protection within Microsoft 365 environments, Sophos and Rubrik have announced a new, integrated backup and recovery solution explicitly tailored for Microsoft 365 users. This strategic partnership leverages Sophos’ expertise...

The convergence of cybersecurity and data protection is undergoing a dramatic shift, as evidenced by the strategic partnership between Sophos and Rubrik. Their newly announced integrated solution—Sophos M365 Backup and Recovery—marks a pivotal moment for organizations relying on Microsoft 365...

In a joint move reshaping cyber resilience for cloud productivity suites, Sophos and Rubrik have unveiled a backup and recovery solution specifically optimized for Managed Detection and Response (MDR) environments running Microsoft 365. This innovative partnership brings Sophos M365 Backup and...

An alarming new wave of cybercrime has emerged, leveraging the very security tools designed to shield organizations from harm. Recent research reveals that phishing actors are now abusing link-wrapping and URL-rewriting services—trusted pillars of enterprise email protection—to sneak malicious...

A new era of cyber resilience for Microsoft 365 users is unfolding as Rubrik and Sophos join forces to deliver an integrated backup, recovery, and threat response solution within the Sophos Central platform. Their collaboration arms organizations with the offensive and defensive tools needed to...

Abnormal AI is making waves in the enterprise cybersecurity landscape with the launch of its updated Security Posture Management solution, specifically tailored to address the increasingly complex risks facing Microsoft 365 environments. As the proliferation of apps, layered configurations, and...