Office Security
The latest Office Security coverage — news, analysis, and updates from the WindowsNews.AI desk.
OneDrive Now Flags Outlook Attachments as ‘From the Internet,’ Breaking Macros by Default
OneDrive’s Latest Update Automatically Flags Email Attachments as Untrusted, Disabling Macros If you’ve ever saved an Excel workbook or Word document from an Outlook email straight into your...
Copilot Won't Touch Your Sensitivity-Labeled Files, No Matter Where You Open Them
Microsoft has quietly closed a critical gap in its Purview Data Loss Prevention (DLP) rules, making it so that sensitivity labels can block Copilot from processing Office files regardless of where...
CVE-2026-56195: Microsoft's July 2026 Office Update Blocks a Stealthy Information Leak – Update Now
Microsoft released its July 2026 security updates for Office on Tuesday, and one patch in particular deserves immediate attention. CVE-2026-56195, an out-of-bounds read flaw, could allow attackers to...
Microsoft Patches High-Severity Excel Flaw (CVE-2026-55949) That Lets Attackers Seize Control—Update Now
Microsoft released its July 2026 security updates for Office on Tuesday, fixing a dangerous vulnerability in Excel that could allow an attacker to run malicious code on a victim’s machine just by...
Excel RCE Vulnerability CVE-2026-55947 Patched: Why You Should Update Office Today
On July 14, 2026, Microsoft dropped its monthly security patches, and one of them fixes a dangerous hole in Excel. Designated CVE-2026-55947, the vulnerability lets an attacker craft a rogue...
Microsoft Patches Excel Flaw That Leaks Data Through Malicious Files—Update Now
{ "title": "Microsoft Patches Excel Flaw That Leaks Data Through Malicious Files—Update Now", "content": "Microsoft released a security update on July 14, 2026 that fixes an...
CVE-2026-54131: Microsoft Fixes Excel Use-After-Free That Can Hijack Your PC via Spreadsheet
A single maliciously crafted Excel file can give an attacker complete control over your Windows PC—and Microsoft just released a patch to stop it. On July 14, 2026, the Microsoft Security Response...
Microsoft Patches Critical PowerPoint Remote Code Execution Flaw – Here’s What You Need to Do
On July 14, 2026, Microsoft pushed a critical security fix for PowerPoint as part of its monthly Patch Tuesday release. The vulnerability, tracked as CVE-2026-55043, is a heap-based buffer overflow...
Microsoft's July Security Update Fixes Word Bug That Could Let Attackers Execute Code — Here's How to Protect Yourself
On July 14, 2026, Microsoft released a security patch closing a heap-based buffer overflow in Microsoft Word that could hand attackers control of a victim’s machine. The vulnerability, tracked as...
You Probably Patched Word Wrong: Microsoft’s July Fix for CVE-2026-55128 Needs Two Separate Checks
On July 14, 2026, Microsoft pushed out security patches that close a high-severity code execution hole in Microsoft Word—tracked as CVE-2026-55128—that could give attackers full control of your...
Microsoft Word Data Leak Flaw Could Aid Attackers – Here’s How to Fix It
Microsoft shipped its July 2026 security updates on the 14th, remediating a memory-corruption oversight in Word that can spill sensitive information when a user opens a specially crafted document....
Word RCE Vulnerability (CVE-2026-55134) Patched—But It Requires User Interaction to Exploit
Microsoft released its July 2026 security updates on July 14, fixing a high-severity remote code execution (RCE) vulnerability in Microsoft Word. Tracked as CVE-2026-55134 and rated 7.8 on the CVSS...