Google Project Zero researchers Tavis Ormandy and Natalie Silvanovich found a remotely exploitable Windows vulnerability that Ormandy called he worst in recent memory.

Microsoft shuts down hackers who hijacked a software updater with fileless, or in-memory, malware attacks.

An anonymous reader quotes a report from VentureBeat: At its Microsoft EDU event in New York City today, the company announced it is bringing Microsoft Office to the Windows Store. We’re talking about the full Win32 version of Office —…

An anonymous reader quotes Computerworld: Revenue generated by Microsoft’s Surface hardware during the March quarter was down 26% from the same period the year before, the company said yesterday as it briefed Wall Street. For the quarter, Surface produced $831…

As Microsoft hardens its defenses with tools such as Control Flow Guard, researchers at Endgame are preparing for the reality of Counterfeit Object-Oriented Programming attacks to move from theoretical to real.

Nearly two-thirds of servers and PCs peddled on the xDedic underground marketplace belong to schools and universities based in United States.

Third-party ‘guerilla’ patching can be a good example of the community stepping up to fix flaws – but it could also compromise security

An anonymous reader writes: Microsoft is still encouraging businesses to rent their Office software, according to TechRadar. “In a bid to further persuade users of the standalone versions of Office to shift over to a cloud subscription (Office 365), Microsoft…

Last Friday’s ShadowBrokers dump, Microsoft ditching passwords, and a new car dongle hack are all discussed.

Microsoft fixed a bug in Skype last month that could have allowed an attacker to execute code on the system it was running on, phish Skype credentials and crash the application.