Microsoft patches actively exploited Office zero-day vulnerability

Microsoft has released emergency security updates to patch a high-severity Office zero-day vulnerability exploited in attacks ...

Russian hackers exploit recently patched Microsoft Office bug in attacks

Ukraine's Computer Emergency Response Team (CERT) says that Russian hackers are exploiting CVE-2026-21509, a recently patched vulnerability in multiple versions of Microsoft Office.
Computerworld

Office sandbox file security to disappear from enterprise Windows by late 2027, Microsoft confirms

Microsoft Defender Application Guard’s Hyper-V malicious detection is being abandoned in favor of a faster rules-based design. Windows enterprise administrators will have until December 2027 at the ...