The Hacker News

First Malicious Outlook Add-In Found Stealing 4,000+ Microsoft Credentials

First malicious Outlook add-in abused an abandoned domain to host a fake Microsoft login page, stealing 4,000+ credentials in a supply chain attack.
SecurityWeek

Microsoft Patches Office Zero-Day Likely Exploited in Targeted Attacks

Microsoft has released patches for CVE-2026-21509, a newly disclosed Office zero-day vulnerability that can be exploited to bypass security features. The tech giant’s advisory for CVE-2026-21509 ...
GitHub

Microsoft Office Icons (ImageMSO) Gallery & Extraction

Microsoft Excel Add-In to browse and save icons from Microsoft Office. Includes a compilation of 8,899 image names and a library for use with Excel development. Microsoft Excel Add-In to browse and ...