Microsoft Archives

Malware & Threats

Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks

Microsoft says an APT with links to Iran’s military intelligence is impersonating a prominent journalist in clever spear-phishing attacks.

Ryan NaraineJanuary 17, 2024

Network Security

Remotely Exploitable ‘PixieFail’ Flaws Found in Tianocore EDK II PXE Implementation

Quarkslab finds serious, remotely exploitable vulnerabilities in EDK II, the de-facto open source reference implementation of the UEFI spec.

Ryan NaraineJanuary 16, 2024

Cloud Security

Microsoft Lets Cloud Users Keep Personal Data Within Europe to Ease Privacy Fears

Microsoft said that it is upgrading its cloud computing service to let customers store all personal data within the European Union.

Associated PressJanuary 11, 2024

Network Security

Microsoft Ships Urgent Fixes for Critical Flaws in Windows Kerberos, Hyper-V

Patch Tuesday: Redmond patches critical, remote code execution vulnerabilities haunting Windows Kerberos and Windows Hyper-V.

Ryan NaraineJanuary 9, 2024

Cloud Security

Cisco to Acquire Isovalent, Add eBPF Tech to Cloud Portfolio

Isovalent raised about 70 million in funding from prominent investors including Microsoft's venture fund, Google, and Andreessen Horowitz.

Ryan NaraineDecember 21, 2023

Malware & Threats

Outlook Plays Attacker Tunes: Vulnerability Chain Leading to Zero-Click RCE

Akamai researchers document more vulnerabilities and patch bypasses leading to zero-click remote code execution in Microsoft Outlook.

Ionut ArghireDecember 19, 2023

Cybercrime

Microsoft Disrupts Cybercrime Service That Created 750 Million Fraudulent Accounts

Microsoft disrupts Storm-1152, a cybercrime-as-a-service business facilitating phishing, identity theft, and DDoS attacks.

Ionut ArghireDecember 14, 2023

Artificial Intelligence

New AI Safety Initiative Aims to Set Responsible Standards for Artificial Intelligence

Major software vendors sign on to a new security initiative to create trusted best practices for artificial intelligence deployments.

SecurityWeek NewsDecember 13, 2023

Phishing

Microsoft Patch Tuesday: Critical Spoofing and Remote Code Execution Flaws

Microsoft warns of critical spoofing and remote code execution bugs in the Windows MSHTML Platform and Microsoft Power Platform Connector.

Ryan NaraineDecember 12, 2023

Cyberwarfare

CISA Issues Warning for Russian ‘Star Blizzard’ APT Spear-Phishing Operation

The US cybersecurity agency calls attention to a Russian APT targeting academia, defense, governmental organizations, NGOs and think-tanks.

Ryan NaraineDecember 7, 2023

CISO Strategy

Microsoft Hires New CISO in Major Security Shakeup

Microsoft announced a major shakeup of its security hierarchy, removing the CISO and Deputy CISO and handing the reins to a recent hire.

Ryan NaraineDecember 6, 2023

Vulnerabilities

Microsoft Offers Up to $20,000 for Vulnerabilities in Defender Products

Microsoft invites researchers to new bug bounty program focused on vulnerabilities in its Defender products.

Ionut ArghireNovember 22, 2023

SECURITYWEEK NETWORK:

ICS:

All posts tagged "Microsoft"

Malware & Threats

Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks

Network Security

Remotely Exploitable ‘PixieFail’ Flaws Found in Tianocore EDK II PXE Implementation

Cloud Security

Microsoft Lets Cloud Users Keep Personal Data Within Europe to Ease Privacy Fears

Network Security

Microsoft Ships Urgent Fixes for Critical Flaws in Windows Kerberos, Hyper-V

Cloud Security

Cisco to Acquire Isovalent, Add eBPF Tech to Cloud Portfolio

Malware & Threats

Outlook Plays Attacker Tunes: Vulnerability Chain Leading to Zero-Click RCE

Cybercrime

Microsoft Disrupts Cybercrime Service That Created 750 Million Fraudulent Accounts

Artificial Intelligence

New AI Safety Initiative Aims to Set Responsible Standards for Artificial Intelligence

Phishing

Microsoft Patch Tuesday: Critical Spoofing and Remote Code Execution Flaws

Cyberwarfare

CISA Issues Warning for Russian ‘Star Blizzard’ APT Spear-Phishing Operation

CISO Strategy

Microsoft Hires New CISO in Major Security Shakeup

Vulnerabilities

Microsoft Offers Up to $20,000 for Vulnerabilities in Defender Products

Featured

Artificial Intelligence

The Shadow AI Surge: Study Finds 50% of Workers Use Unapproved AI Tools

Vulnerabilities

Fresh Windows NTLM Vulnerability Exploited in Attacks

Vulnerabilities

SonicWall Flags Old Vulnerability as Actively Exploited

Malware & Threats

Apple Quashes Two Zero-Days With iOS, MacOS Patches

Government

MITRE CVE Program Gets Last-Hour Funding Reprieve

Nation-State

China Pursuing 3 Alleged US Operatives Over Cyberattacks During Asian Games

Data Breaches

Hertz Discloses Data Breach Linked to Cleo Hack

Latest News

Fraud & Identity Theft

North Korean Cryptocurrency Thieves Caught Hijacking Zoom ‘Remote Control’ Feature

Artificial Intelligence

Exaforce Banks Hefty $75 Million for AI-Powered SOC Remake

Artificial Intelligence

Kenzo Security Raises $4.5 Million for Agentic AI Security Operations Platform

Artificial Intelligence

Bot Traffic Surpasses Humans Online—Driven by AI and Criminal Innovation

Cyberwarfare

Countries Shore Up Their Digital Defenses as Global Tensions Raise the Threat of Cyberwarfare

ICS/OT

Lantronix Device Used in Critical Infrastructure Exposes Systems to Remote Hacking

Cybercrime

In Other News: 4chan Hacked, Android Auto-Reboot, Nemesis Admin Charged

Daily Briefing Newsletter