Microsoft backtracks on Copilot Chat access in M365 apps
Microsoft is set to remove Copilot Chat access within Microsoft 365 apps such as Word, Excel, and PowerPoint for large M365 commercial customers starting April 15 — a “mystifying backtrack,” according to one technology industry analyst. Copilot Chat is essentially a freemium version of the paid Microsoft 365 Copilot, which costs $30 per user per […] more…HackerOne Employee Data Exposed in Massive Navia Breach
The cybersecurity firm said the personal information of hundreds of employees was stolen in the hacker attack targeting Navia. The post HackerOne Employee Data Exposed in Massive Navia Breach appeared first on SecurityWeek. more…Apple goes global with key MDM tools and services for business
As it steadily grows its share in business markets, Apple has at last introduced its very useful collection of services for small and mid-sized businesses (SMBs), Apple Business Essentials, outside the US; except it’s not called Apple Business Essentials, and much of it will be free. First introduced November 2021 following the company’s acquisition of Fleetsmith, Business Essentials is […] more…Apple: Local business ads are coming to Apple Maps
Following years of speculation, Apple has confirmed it intends to introduce advertising in Apple Maps — specifically a business-focused offering designed to grab a chunk of the estimated $296 billion location-based ads market. Announced alongside big changes in Apple’s services for business, including international introduction of services previously available with Apple Business Essentials in the […] more…Critical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms Warn
An out-of-bounds read vulnerability can be exploited remotely without authentication to read sensitive information from memory. The post Critical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms Warn appeared first on SecurityWeek. more…Mazda Says Employee, Partner Information Stolen in Cyberattack
The hackers stole internal IDs, names, email addresses, and business partner IDs from an internal management system. The post Mazda Says Employee, Partner Information Stolen in Cyberattack appeared first on SecurityWeek. more…QNAP Patches Four Vulnerabilities Exploited at Pwn2Own
The flaws could allow attackers to access sensitive information, execute code, or cause unexpected behavior. The post QNAP Patches Four Vulnerabilities Exploited at Pwn2Own appeared first on SecurityWeek. more…How to check your co-workers’ schedules in Outlook and Teams
Finding the right time for everybody to meet is a big challenge in work life. Simply throwing out a suggested meeting time in email — “Is everyone free on Thursday at 11am EST?” — often leads to multiple rounds of “I can’t make it then. How about Wednesday at 2pm?” follow-ups. There’s a better way. […] more…Critical Quest KACE Vulnerability Potentially Exploited in Attacks
The vulnerability is tracked as CVE-2025-32975 and it may have been exploited in attacks against the education sector. The post Critical Quest KACE Vulnerability Potentially Exploited in Attacks appeared first on SecurityWeek. more…Microsoft won’t force Copilot in everywhere after all
Microsoft has temporarily halted automatic installation of the Microsoft 365 Copilot app on Windows devices with Microsoft 365 desktop apps. The company announced the change via an update in Microsoft 365 Message Centre, but offered no indication when the measure would be reactivated. However, existing installations of the app will not be affected. “Automatic installation […] more…Critical Langflow Vulnerability Exploited Hours After Public Disclosure
Because attacker-supplied flow data is used in public flows, the bug leads to unauthenticated remote code execution. The post Critical Langflow Vulnerability Exploited Hours After Public Disclosure appeared first on SecurityWeek. more…Privacy Platform Cloaked Raises $375M to Expand Enterprise Reach
Cloaked plans to introduce AI agents designed to act on behalf of users to monitor, manage, and enforce privacy preferences and security postures. The post Privacy Platform Cloaked Raises $375M to Expand Enterprise Reach appeared first on SecurityWeek. more…Security Firm Aura Discloses Data Breach Impacting 900,000 Records
The information was stolen from a marketing tool after an employee fell victim to a targeted phone phishing attack. The post Security Firm Aura Discloses Data Breach Impacting 900,000 Records appeared first on SecurityWeek. more…Russian APT Exploits Zimbra Vulnerability Against Ukraine
Insufficient sanitization of CSS content within HTML emails leads to inline script execution when the message is opened in a browser. The post Russian APT Exploits Zimbra Vulnerability Against Ukraine appeared first on SecurityWeek. more…Iran war set to hit global IT spending, IDC warns
The conflict in the Middle East threatens to weigh heavily on the global economy, with soaring oil prices expected to dampen GDP growth and prompt businesses and consumers to reduce technology spending, according to analysts at IDC. The key question — and one with few answers — is how long the fighting will continue. The […] more…Cloud Security Startup Native Exits Stealth With $42 Million in Funding
Phil Venables, former CISO of Google Cloud and now a venture partner at Ballistic Ventures, has joined Native’s board of directors. The post Cloud Security Startup Native Exits Stealth With $42 Million in Funding appeared first on SecurityWeek. more…More information
- Porn Video Interrupts US Court Hearing for Accused Twitter Hacker
- UAE target of cyber attacks after Israel deal, official says
- Adobe Acrobat and Reader CVE-2019-16462 Arbitrary Code Execution Vulnerability
- ZeroFOX Raises $74 Million to Expand Social Media Threat Protection Business
- Data Breach Hits 140 Cicis Restaurants
- CrowdStrike Launches Cybersecurity Search Engine
- Resolved: CACTUS service unavailable
- Microsoft Improving Windows Authentication, Disabling NTLM
- Google Says Social Network Bug Exposed Private Data
- GitHub Developer Program emphasizes integrations