Security News > 2024 > April > Microsoft pulls fix for Outlook bug behind ICS security alerts
![Microsoft pulls fix for Outlook bug behind ICS security alerts](/static/build/img/news/microsoft-pulls-fix-for-outlook-bug-behind-ics-security-alerts-medium.jpg)
Microsoft has rolled back a fix for a known Outlook issue that was causing incorrect security alerts when opening ICS calendar files after installing the December Outlook Desktop security updates.
Affected Microsoft 365 users are seeing unexpected warnings that "Microsoft Office has identified a potential security concern" and that "This location may be unsafe" when double-clicking ICS files saved on their devices.
The December security updates triggering these alerts patch an Outlook information disclosure vulnerability that can let attackers steal NTLM hashes via maliciously crafted files and use them in Windows pass-the-hash attacks to access sensitive data or move laterally on the network.
Microsoft fixed the issue in early April and started shipping it with Outlook for Microsoft 365 Version 2404 Build 17531.
Microsoft fixes Outlook security alerts bug caused by December updates.
Microsoft warns Gmail blocks some Outlook email as spam, shares fix.
News URL
Related news
- Microsoft: New Outlook security changes coming to personal accounts (source)
- Azure Service Tags tagged as security risk, Microsoft disagrees (source)
- Microsoft shows venerable and vulnerable NTLM security protocol the door (source)
- Microsoft fixes RCE vulnerabilities in MSMQ, Outlook (CVE-2024-30080, CVE-2024-30103) (source)
- Microsoft delays Windows Recall amid privacy and security concerns (source)
- Microsoft Delays AI-Powered Recall Feature for Copilot+ PCs Amid Security Concerns (source)
- Microsoft delays Windows Recall rollout, more security testing needed (source)
- Microsoft answered Congress' questions on security. Now the White House needs to act (source)
- Microsoft hits snooze again on security certificate renewal (source)
- Microsoft finally fixes Outlook alerts bug caused by December updates (source)