Microsoft Patch Tuesday Fixes 112 Flaws, Includes SharePoint and Windows

Microsoft’s January 2026 Patch Tuesday fixes 112 CVEs, including an exploited Windows DWM zero-day, plus critical flaws ...

One click is all it takes: How ‘Reprompt’ turned Microsoft Copilot into a data exfiltration tool

A new one-click attack flow discovered by Varonis Threat Labs researchers underscores this fact. ‘Reprompt,’ as they’ve ...

This Microsoft Copilot AI attack took a single click to compromise users

Security researchers Varonis have discovered Reprompt, a new way to perform prompt-injection style attacks in Microsoft ...
Redmondmag.com

Microsoft Knocks Offline RedVDS Cybercrime Marketplace Linked to $40M in Fraud

Microsoft said it has disrupted RedVDS, a global cybercrime subscription service used by financially motivated attackers to ...

How this one-click Copilot attack bypassed security controls - and what Microsoft did about it

ZDNET's key takeaways Dubbed "Reprompt," the attack used a URL parameter to steal user data.A single click was enough to ...