Microsoft

Subscribe to Microsoft via RSS

A class action complaint filed in the Northern District of California on October 17, 2025, alleges that entertainment and arcade franchise Dave & Buster’s Entertainment Inc., misled website visitors about users’ ability to reject cookies and tracking technologies. The lawsuit, brought by two California residents, claims that the Dave & Buster’s website continued to place

On October 9, 2025, the Northern District of California denied Mashable, Inc.’s motion to dismiss a class action alleging violations of the California Invasion of Privacy Act (CIPA). Mashable operates a digital news and entertainment website that publishes articles and multimedia content online. The plaintiff alleged that Mashable disclosed the IP addresses and device identifiers

Microsoft has confirmed that vulnerabilities in its on-premises SharePoint Server installations, a network spoofing vulnerability (CVE-202549706), and a remote code execution vulnerability (CVE-2025-49704) are being actively exploited despite releasing an emergency patch on July 20, 2025. The vulnerabilities allow threat actors to “execute code remotely, bypass identity protections such as multi-factor authentication and access system

A Microsoft blog post reported that incident response researchers uncovered a remote access trojan in November 2024 (dubbed StilachiRAT) that “demonstrates sophisticated techniques to evade detection, persist in the target environment, and exfiltrate sensitive data.” 

According to Microsoft, the StilachiRAT threat actors use different methods to steal information from the victim, including credentials stored in

Thomson Reuters scored a major victory in one of the first cases dealing with the legality of using copyrighted data to train artificial intelligence (AI) models. In 2020, Thomson Reuters sued the now-defunct AI start-up Ross Intelligence for alleged improper use of Thomson Reuters materials, including case headnotes in its Westlaw search engine, to train

Microsoft is developing a way to eliminate hallucinations, or false responses, in artificial intelligence (AI) models. It filed U.S. Patent Application No. 18/140,658, entitled “Interacting with a Language Model using External Knowledge and Feedback,” in April 2023. The application published on October 31, 2024, and became available for public inspection.

The patent specification describes a

On October 22, 2024, Microsoft issued a threat trend research report entitled “US Healthcare at risk: Strengthening resilience against ransomware attacks.” In it, Microsoft declares that ransomware attacks against the healthcare sector are “emerging as one of the most significant” cybersecurity threats to healthcare organizations. The attack surface of hospitals “grows more complex” with digital

We previously reported on the concerning mash-up of worldwide cybercriminals, known as Scattered Spider, working together to attack victims.

New reports from Microsoft and others indicate that since the second quarter of 2024, Scattered Spider is now using RansomHub and Qilin ransomware against victims. Scattered Spider is suspected of attacking hundreds of organizations since its