CVE-2026-3805 use after free in SMB connection reuse
Information published. Continue reading CVE-2026-3805 use after free in SMB connection reuse
CVE-2026-3904
Information published. Continue reading CVE-2026-3904
Microsoft announces Experiences + Devices leadership changes
Rajesh Jha, Executive Vice President, Experiences + Devices, and Satya Nadella, Chairman and CEO, shared the below communications with Microsoft employees this morning. RAJESH JHA MESSAGE Subject: Organizing for the future and my transition Dear Team, After 35+ years at Microsoft, I am moving into retirement. I will transition out on July 1st and then stay in an…
The post Microsoft announces Experiences + Devices leadership changes appeared first on The Official Microsoft Blog.
Continue reading Microsoft announces Experiences + Devices leadership changes
Detecting and analyzing prompt abuse in AI tools
Hidden instructions in content can subtly bias AI, and our scenario shows how prompt injection works, highlighting the need for oversight and a structured response playbook.
The post Detecting and analyzing prompt abuse in AI tools appeared first on Microsoft Security Blog.
Continue reading Detecting and analyzing prompt abuse in AI tools
CVE-2026-26133 M365 Copilot Information Disclosure Vulnerability
Ai command injection in M365 Copilot allows an unauthorized attacker to disclose information over a network. Continue reading CVE-2026-26133 M365 Copilot Information Disclosure Vulnerability
CVE-2026-3784 wrong proxy connection reuse with credentials
Information published. Continue reading CVE-2026-3784 wrong proxy connection reuse with credentials
CVE-2026-1965 bad reuse of HTTP Negotiate connection
Information published. Continue reading CVE-2026-1965 bad reuse of HTTP Negotiate connection
CVE-2026-3783 token leak with redirect and netrc
Information published. Continue reading CVE-2026-3783 token leak with redirect and netrc