News

Microsoft’s plan to fix the web with AI has already hit an embarrassing security flaw
This latest security issue highlights the challenges of security in an AI era.
Microsoft calls out Apple Intelligence AI security flaw which could have let hackers steal private data
The bug, tracked as CVE-2025-31199, could allow hackers to access files in the Downloads folder, as well as caches utilized ...
AI Beats Hackers to a Zero-Day Cybersecurity Discovery, Twice
AI has prevented real-world cyberattacks before they could begin, proving AI fast enough to beat human threat actors to ...
Nearly half of all code generated by AI found to contain security flaws - even big LLMs affected
Report finds 45% of AI-generated code had security flaws Java is the worst offender, Python, C# and JavaScript also affected ...
ExecutiveGov2d
CISA Issues Emergency Directive to Address Microsoft Exchange Security Risk
CISA has issued an emergency directive to address a security risk that could affect hybrid Microsoft Exchange users and ...
Big embarrassment for Microsoft: Critical security bug found in new AI tool
Microsoft's new AI-powered NLWeb protocol, designed to enhance websites with ChatGPT-like capabilities, has already ...
SecurityWeek6d
Microsoft Offers $5 Million at Zero Day Quest Hacking Contest
Research demonstrating high-impact cloud and AI security flaws will be rewarded at Microsoft’s Zero Day Quest competition in ...
Microsoft increases Zero Day Quest prize pool to $5 million
Microsoft will offer up to $5 million in bounty awards at this year's Zero Day Quest hacking contest, which the company ...
Microsoft now pays up to $40,000 for some .NET vulnerabilities
Microsoft has expanded its .NET bug bounty program and increased rewards to $40,000 for some .NET and ASP.NET Core ...
Microsoft contains SharePoint security wildfire, but questions linger about on-premises software
Microsoft contained a major SharePoint security flaw, amid fresh questions about the future of its legacy on-premises ...
Nearly 30,000 Microsoft Exchange servers remain unpatched against critical hybrid flaw
“This is a serious vulnerability in Exchange and security teams should give it immediate attention,” Thomas Richards, infrastructure security practice director at application security software ...