Researchers have uncovered a supply-chain attack that hides in Python packages, propagates like a worm, and tricks LLM-based ...

Dozens of cryptographically verified open source packages from Microsoft were compromised late last week to add advanced credential-stealing code that was triggered when developers opened them in AI ...

Microsoft's Build 2026 conference produced the year's biggest enterprise-AI announcement, and the piece with the widest reach is also the most concrete: Anthropic's Claude is now an option in Excel ...

Teams defaults enable AI voice-aided Quick Assist attacks, creating 10–15 minute detection gaps before lateral movement.

As threat actors operationalize AI to accelerate attacks, they are also leveraging the wider global interest around AI itself as a social engineering lure. In recent months, Microsoft Threat ...

Your weekly cybersecurity recap: a GitHub supply chain worm, an exploited Android flaw, Instagram account takeovers, and a ...

Microsoft has opened Azure Linux 4.0 preview for Azure VMs and containers, giving teams a test path before support and FIPS ...

Vibe-coding your problems away doesn't get easier than this ...

New tools for building and securely running AI agents show how Microsoft hopes to put devs and enterprises firmly in the ...

With Microsoft's new Dev Configs, a Windows installation becomes a ready-to-use developer workstation with a single command – ...

A website called “UK visa portal” has been quietly collecting passport scans, selfies, and personal data from thousands of travellers who thought they were applying through official channels.

At the Build 2026 developer conference, Microsoft encouraged developers to build more native apps for Windows 11.