Security Patch
The latest Security Patch coverage — news, analysis, and updates from the WindowsNews.AI desk.
CVE-2025-32711 zero-click flaw in Microsoft 365 Copilot lets attackers silently steal data via malicious Markdown.
The discovery of CVE-2025-32711, nicknamed "EchoLeak," has sent shockwaves through the cybersecurity community, exposing a critical zero-click vulnerability in Microsoft 365 Copilot that could allow...
Microsoft 365 Copilot Zero-Click Exploit EchoLeak Triggers Emergency Patches
Microsoft 365 Copilot, the AI-powered productivity assistant, has faced its first major security threat—EchoLeak, a zero-click exploit discovered by cybersecurity firm Aim Security. This...
CVE-2025-32711: EchoLeak zero-click flaw in M365 Copilot lets emails exfiltrate data
In June 2025, cybersecurity researchers uncovered a critical zero-click vulnerability (CVE-2025-32711) in Microsoft 365 Copilot, marking one of the most severe AI-assisted security flaws to date....
Zero-click EchoLeak flaw in Copilot allows data theft via poisoned prompts
A newly discovered vulnerability in Microsoft Copilot, dubbed EchoLeak (CVE-2025-32711), has exposed a critical flaw in AI-powered productivity tools, allowing attackers to exfiltrate sensitive data...
Critical Windows Task Scheduler Flaw CVE-2025-33067: Risks, Mitigation, and Best Practices
A newly discovered vulnerability in the Windows Task Scheduler, designated as CVE-2025-33067, has sent shockwaves through the cybersecurity community, exposing millions of Windows devices to...
Microsoft patches critical Task Scheduler flaw allowing SYSTEM-level privilege escalation
In early June, cybersecurity professionals and IT administrators were confronted with a newly disclosed vulnerability in a core component of the Windows operating system that has raised significant...
CVE-2025-32711: Critical M365 Copilot Vulnerability Exposes Sensitive Data
A newly discovered vulnerability in Microsoft 365 Copilot, tracked as CVE-2025-32711, has sent shockwaves through the cybersecurity community. This critical information disclosure flaw could allow...
EchoLeak Exposed: Microsoft 365 Copilot Zero-Click Vulnerability Patched
Microsoft 365 Copilot, one of the flagship generative AI assistants deeply woven into the fabric of workplace productivity through the Office ecosystem, recently became the focal point of a security...
Windows 11 June 2025 Update Delay: What You Need to Know About the Compatibility Issue
Microsoft has unexpectedly paused the rollout of its June 2025 Update for Windows 11 version 24H2 after discovering a critical compatibility issue affecting enterprise deployments. The problem...
Windows 11 June 2025 Update Extends Restore Points, Fixes 47 Security Flaws
Microsoft's June 2025 Patch Tuesday update for Windows 11 brings a host of improvements, from enhanced system recovery options to critical security patches and refined font rendering for East Asian...
Emergency Microsoft Patch Released for Critical Windows RDS Zero-Day CVE-2025-32710
A critical vulnerability in Windows Remote Desktop Services (RDS), designated as CVE-2025-32710, has sent shockwaves through the cybersecurity community. This flaw, rated 9.8 on the CVSS severity...
78 flaws fixed, 3 zero-days exploited: June Patch Tuesday urges immediate action
Microsoft's June 2025 Patch Tuesday has arrived with a mix of urgent fixes and sobering reminders about the evolving threat landscape. This month's security update addresses 78 vulnerabilities across...