Are you afraid of elevation of privilege attacks? Then patch immediately.
Microsoft has fixed more than 50 (!) of those on a single patch day. PS: how come there are so many found and fixed this month? Is Bill himself helping out again ;-) ?
Heads-up on the latest Office update. Some Access users are reporting Type Mismatches and Access crashes. If you are using the decimal data type and DAO and are on version 2005, build 12827.20010 or greater, it's advised that you roll back the update.
...could it be that TrendMicro was cheating in order to obtain Microsoft’s WHQL Certification? A security researcher found mechanisms that (interpreted by him) suggest that. Scroll to the paragraph "Cheating Microsoft’s WHQL Certification"
Fake Google and Microsoft branded websites meant to trick users into giving away their login credentials accounted for a bulk of form based cyberattacks detected by Barracuda Networks in last four months.
Out of the 100,000 form-based attacks by the cybersecurity firm between January 1 and April 30, Google file sharing and storage websites were used in 65% of the cases, accounting for 4% of all spear-phishing attacks in the first four months of the 2020.
The report shows that 25% of attacks used storage.googleapis.com, 23% used docs.google.com, 13% used storage.cloud.google.com and 4% used drive.google.com for impersonation.
On the other hand, Microsoft brands accounted for 13% of the attacks. Microsoft’s onedrive.live.com was involved in 6% attacks, sway.office.com in 4% attacks and forms.office.com in 3% of attacks.
The other leading websites used in impersonation attacks include sendgrid.net (10%), mailchimp.com (4%), and formcrafts.com (2%).
Here's a tip for a site that I often use when helping to troubleshoot browser problems for people. Not sure if many know about it, but I find it very useful as it provides a ton of useful info without having to ask people all about their browser settings.
Service degradation in Exchange Online.
Multiple credential prompts in the Outlook client.
Status: Service degradation
User impact: Users may receive repeated credential prompts within the Outlook client.