Skip to main content

Microsoft Outlook has a new ‘critical’ flaw that spreads malware easily

Outlook running on the Samsung Galaxy Z Flip 5 cover screen.
Outlook app on the Z Flip 5 cover screen Joe Maring / Digital Trends

In a security alert, Microsft warned users how easy it is for hackers to distribute malware using their Outlook email client. Microsoft has already released a patch for the CVE-2025-21298 user-after-free vulnerability and urges users to apply it immediately.

Microsoft gave the vulnerability a severity score of 9.8 (critical) since it uses freed memory and corrupts valid data, or parcels out malware remotely. This bug is in the Windows Object Linking and Embedding (OLED) function, allowing you to embed and link to documents and other objects, such as adding an Excel chart to a Word document. It’s so dangerous that you can become infected by previewing the specially crafted email.

Recommended Videos

Microsoft said in the security warning, “Exploitation of the vulnerability might involve either a victim opening a specially crafted email with an affected version of Microsoft Outlook software, or a victim’s Outlook application displaying a preview of a specially crafted email. This could result in the attacker executing remote code on the victim’s machine.”

If you can’t apply the patch at the moment, Microsoft encourages you to apply tips such as viewing your emails in large LAN networks as plain text and turning off or restricting NTLM traffic altogether. What happens when you view your emails in plain text? Basically, all animation, images, and different fonts are removed. Your emails won’t look as stylish when viewing them in plain text, but this way, you can avoid loss of customers, business disruptions, and possibly regulatory fines.

No app is perfect and you’ll come across issues sooner or later. Even Outlook has common problems but if your facing some basic issues, we’ve got you covered on how to fix them. This isn’t the first major issue Outlook has faced with hackers being able to view emails a while back.

Judy Sanhz
Judy Sanhz is a Digital Trends computing writer covering all computing news. Loves all operating systems and devices.
A new test shows Microsoft Recall’s continued security problems
Recall screenshot.

Microsoft is currently previewing its latest version of Recall to Windows Insiders on Snapdragon-, Intel-, and AMD-based Copilot+ PCs -- and the topic on most users' minds is security. The company updated its security and privacy architecture for the feature in September, but, according to tests run by Tom's Hardware, it still might not be good enough.

The new version of Recall includes a sensitive information filter that's supposed to detect when there's information like credit card numbers and Social Security numbers on the screen. If it detects them, it will avoid taking a screenshot. When Tom's Hardware put this filter to the test, however, it failed in a number of situations.

Read more
Microsoft Outlook and Teams are down — and might be for a while
Microsoft Outlook app landing page.

As reported by Deadline, over 5,000 people have reported issues with different Microsoft 365 apps since around 8 a.m. ET this morning. The outage is affecting worldwide usage of email and calendar services associated with Exchange, Outlook, and Teams.

https://twitter.com/MSFT365Status/status/1860973220662280356

Read more
5 calendar apps you should use instead of Outlook
A man using Google Calendar on a laptop.

Microsoft has just redesigned its Outlook email app, and it’s fair to say that the change has made some people unhappy. But Outlook covers more than just email -- it’s got a built-in calendar too, and Microsoft’s plan is to ditch the existing Mail and Calendar apps for Windows and merge them both into Outlook. That means that anyone switching away from the email app also needs a new way to manage their schedule.

That’s where our guide comes in. We’ve found five of the best Outlook alternatives you can get your hands on, and they run the gamut of features and philosophies, from privacy-minded options to those that are built for productivity. Whatever you need, chances are you’ll find it below.
Notion Calendar

Read more