Microsoft owns the domain, and the SSL certificate recently expired, but there is no danger of malware or harm to the devices. This type of notification is triggered by the Online Threat Prevention module whenever the website you are trying to access doesn't have an SSL certificate (HTTPS) and it's not safe to access, and the alert is also triggered when you try to visit a secured website (HTTPS) with an invalid security certificate and this is what happens here actually.