Vulnerabilities Microsoft Patches Xbox Vulnerability Following Public Disclosure Microsoft patches Xbox Gaming Services vulnerability CVE-2024-28916 after initially saying it was not a security issue. Eduard KovacsMarch 21, 2024
Artificial Intelligence Microsoft Hires Influential AI Figure Mustafa Suleyman to Head up Consumer AI Business Microsoft hired Mustafa Suleyman to head up its new AI business, adding an influential figure to its pool of talent leading the charge to... Associated PressMarch 20, 2024
Artificial Intelligence Microsoft’s AI-Powered Copilot for Security Set for Worldwide Release Microsoft announces that its Copilot for Security generative AI security solution will become generally available on April 1. Eduard KovacsMarch 14, 2024
Security Architecture Patch Tuesday: Microsoft Flags Major Bugs in HyperV, Exchange Server Microsoft ships patches for at least 60 security vulnerabilities in the Windows ecosystem and warned of remote code execution risks. Ryan NaraineMarch 12, 2024
Incident Response Microsoft Says Russian Gov Hackers Stole Source Code After Spying on Executive Emails Microsoft says the Midnight Blizzard APT group may still be poking around its internal network after stealing source code, spying on emails. Ryan NaraineMarch 8, 2024
Compliance Cayosoft Raises $22.5 Million for Microsoft AD Recovery Tech Ohio security vendor Cayosoft banks new capital to fuel growth of its flagship Active Directory forest recovery product suite. SecurityWeek NewsMarch 7, 2024
Artificial Intelligence Microsoft Releases Red Teaming Tool for Generative AI Microsoft releases PyRIT red teaming tool to help identify risks in generative AI through automation. Ionut ArghireFebruary 23, 2024
Artificial Intelligence Microsoft Catches APTs Using ChatGPT for Vuln Research, Malware Scripting Microsoft threat hunters say foreign APTs are interacting with OpenAI’s ChatGPT to automate malicious vulnerability research, target reconnaissance and malware creation tasks. Ryan NaraineFebruary 14, 2024
Data Breaches Microsoft Says Russian Gov Hackers Stole Email Data From Senior Execs A Russian government-backed hacking team broke into Microsoft’s corporate network and stole emails and attachments from senior executives. Ryan NaraineJanuary 19, 2024
Malware & Threats Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks Microsoft says an APT with links to Iran’s military intelligence is impersonating a prominent journalist in clever spear-phishing attacks. Ryan NaraineJanuary 17, 2024
Network Security Remotely Exploitable ‘PixieFail’ Flaws Found in Tianocore EDK II PXE Implementation Quarkslab finds serious, remotely exploitable vulnerabilities in EDK II, the de-facto open source reference implementation of the UEFI spec. Ryan NaraineJanuary 16, 2024
Cloud Security Microsoft Lets Cloud Users Keep Personal Data Within Europe to Ease Privacy Fears Microsoft said that it is upgrading its cloud computing service to let customers store all personal data within the European Union. Associated PressJanuary 11, 2024