Tag

Microsoft 365

All articles tagged with #microsoft 365

cybersecurity1 day ago•4 min saved

FBI Warns Kali365 PhaaS Bypasses MFA on Microsoft 365

The FBI issued a PSA about Kali365, a phishing‑as‑a‑service that exploits Microsoft’s OAuth device-code flow to hijack Entra and Microsoft 365 accounts, stealing session tokens and bypassing MFA. Kali365, distributed via Telegram, provides AI‑generated phishing lures, automated campaigns, and real‑time dashboards, with two attack modes: device‑code phishing and a Cookie Link adversary‑in‑the‑middle. Arctic Wolf observed global campaigns targeting Microsoft 365 environments, including creating malicious inbox rules and registering new devices. The FBI urges blocking device‑code authentication with Conditional Access, auditing usage, reporting incidents to IC3, and preserving phishing emails and suspicious activity. Device-code phishing has surged in 2026, with other PhaaS tools like EvilTokens and Tycoon2FA using similar methods.

via BleepingComputer|

#cybersecurity #device-code #kali365

security8 days ago•4 min saved

Tycoon2FA Expands to Device-Code Phishing Targeting Microsoft 365

A new Tycoon2FA variant uses device-code phishing via a Trustifi click-tracking URL to hijack Microsoft 365 accounts by steering victims to the legitimate device-login flow at microsoft.com/devicelogin, granting attackers OAuth tokens and access to email, calendar, and files. After a takedown, the kit resurfaced with obfuscation and new delivery chains, prompting defenders to disable the device-code flow when not needed, restrict OAuth permissions, enable Continuous Access Evaluation, and monitor Entra logs for deviceCode activity and related IoCs.

via BleepingComputer|

#device-code-phishing #microsoft-365 #oauth-device-login

cyber-security16 days ago•57 min saved

Microsoft 365 Copilot Flaws Lead to Data Exposure, Cloud Fix Deployed

Microsoft disclosed and fully mitigated three critical cloud-side information-disclosure vulnerabilities affecting Microsoft 365 Copilot and Copilot Chat in Edge (CVE-2026-26129, CVE-2026-26164, CVE-2026-33111). The flaws—rooted in improper handling of special elements and command injection—could allow leakage of sensitive enterprise data over the network. Mitigations are deployed at the service level; no patches or admin actions are required. Security teams should review Copilot data access permissions and enforce least-privilege to reduce exposure from future flaws.

via CyberSecurityNews|

#copilot #cyber-security #cybersecurity

technology28 days ago•84 min saved

Rollback completes as Microsoft 365 and Outlook outages ease

Microsoft has completed a rollback after a change caused outages in Microsoft 365, Outlook, and related services; the company says service health is improving and will continue monitoring for further mitigation as telemetry shows stabilization, with status updates noting the rollback and ongoing monitoring.

via Windows Central|

#microsoft-365 #outage #outlook

technology29 days ago•6 min saved

Outlook Sign-In Glitch Persists as Microsoft Rolls Back Change

Microsoft Outlook users began experiencing sign-in failures and intermittent errors ('too many requests') on Monday. Microsoft rolled back a recent backend configuration change, but the rollback did not resolve the outage, and the company is continuing to investigate and monitor the issue, with updates on its status page and X account; Copilot issues are separate and not related to the Outlook outage.

via CNET|

#downdetector #microsoft-365 #outage

technology1 month ago•2 min saved

Microsoft counters MacBook Neo with bundled Office and Game Pass on Windows laptops

Microsoft counters Apple's MacBook Neo by promoting Windows laptops priced to compete, offering college students a free year of Microsoft 365 Premium, Xbox Game Pass Ultimate, and a customized Xbox controller with eligible devices through July 31. The promotion spotlights budget-friendly rigs from Dell, HP, Lenovo, and Acer that match or beat the Neo on price and specs, in a move driven by Neo demand and supply pressures in the PC market.

via TechSpot|

#budget-laptops #macbook-neo #microsoft-365

technology-and-electronics-computing1 month ago•19 min saved

Microsoft's College Offer bundles software with budget laptops, but trails the MacBook Neo

Microsoft's College Offer bundles Microsoft 365 Premium, Xbox Game Pass Ultimate, a custom Xbox controller, and discounted laptops for students, touting up to $500 in value; however, its appeal hinges on new-subscription rules and a limited redemption window, making the deal less straightforward or compelling than Apple's $500 MacBook Neo, with cheaper partner laptops like the Lenovo IdeaPad Slim 3x ($500) and HP Omnibook 3 ($429).

via Engadget|

#college-offer #laptops #microsoft

technology1 month ago•6 min saved

Microsoft Plans OpenClaw-Inspired Copilot Features With 24/7 Enterprise Agents

Microsoft is developing Copilot features modeled on the OpenClaw open-source AI agent, including always-on agents that could operate 24/7 inside Microsoft 365 apps, as it races to bolster its enterprise AI offerings amid competition.

via The Information|

#ai-agents #enterprise-software #microsoft-365

technology2 months ago•2 min saved

Office 2024: One-time license beats yearly Microsoft 365 fees

Microsoft Office 2024 Home & Business lifetime license for Mac or PC is on sale for about $90, offering Word, Excel, PowerPoint, Outlook, and OneNote with offline installation and updates, providing a one-time purchase that can replace ongoing Microsoft 365 subscriptions for many users.

via Mashable|

#lifetime-license #microsoft-365 #microsoft-office

technology3 months ago•3 min saved

Microsoft Probes Missing Cursor Bug in Classic Outlook

Microsoft is investigating a bug in the classic Outlook desktop client that makes the mouse pointer vanish, a problem that has also been reported in some Microsoft 365 apps. Temporary workarounds include clicking an email to restore the pointer, switching to PowerPoint and back, or restarting the computer; admins are advised to open a support case and submit diagnostic logs. There is no timeline for a permanent fix yet, though Microsoft has recently resolved another Outlook issue.

via BleepingComputer|

#microsoft-365 #mouse-pointer #outlook-classic

technology3 months ago•3 min saved

Copilot bug rewrites confidential emails by summarizing labeled messages

A bug in Microsoft 365 Copilot causes its Work tab chat to summarize emails—including those with confidentiality labels in Sent Items and Drafts—bypassing DLP protections. Microsoft began rolling out a fix in early February and is monitoring impact while assessing scope and remediation progress.

via BleepingComputer|

#bug #copilot #data-loss-prevention

technology4 months ago•42 min saved

Microsoft Lets Employers See Your Location Through Workplace Apps

Microsoft is rolling out a feature that allows employers to access employees' device location data via its enterprise tools, sparking privacy concerns as who can view and control the data depends on admin settings and company policy.

via Forbes|

#employee-monitoring #location-data #microsoft-365

technology4 months ago•3 min saved

Microsoft 365 outage hits Outlook and more as traffic is rebalanced

Microsoft said a 365 outage disrupted Outlook and other services in the U.S., as it works to rebalance traffic across affected infrastructure and implement additional actions to restore full service, with some users still experiencing degraded functionality.

via Mashable|

#downdetector #microsoft-365 #outlook

technology4 months ago•3 min saved

Microsoft 365 outage: traffic rebalancing underway to restore Outlook and more

Microsoft 365 services, including Outlook, faced heavy downtime with degraded functionality. Microsoft said a North America infrastructure issue is being addressed by rebalancing traffic and monitoring health telemetry, in an incremental recovery effort to restore services across affected platforms.

via Mashable|

#downtime #microsoft-365 #outage

technology4 months ago•11 min saved

Microsoft outage hits Outlook and Teams as investigators probe network issues

Microsoft 365 services including Outlook, Teams and other apps experienced a widespread outage after thousands reported issues on Downdetector; Microsoft said it was investigating and cited a possible third‑party networking issue. By about 18:44 UTC the company said the incident was resolved and the service environment remained healthy, though a small number of users continued to report sign‑in or access problems (with some Xbox app/store issues on iPad).

via Daily Express|

#microsoft #microsoft-365 #microsoft-teams