Microsoft

In a recent incident, the Microsoft AI research team inadvertently exposed a staggering 38 terabytes of private data on their GitHub repository.  This exposure resulted from the misconfiguration of an Azure feature known as SAS...

Microsoft has released its Patch Tuesday update, which includes 59 vulnerabilities along with two Zero-Days. The severity for these vulnerabilities ranges from 4.3 (Medium) to 8.8 (High).  Categories of the vulnerabilities patched include Information Disclosure...

Finding and patching the open vulnerabilities in today's threat landscape is one of the utmost priorities for security researchers and analysts. Identifying weaponized high-risk CVEs actively targeted by Threat Actors and ransomware in the vast...

Threat actors have shifted from using malicious macros to malicious LNK files for initial access. This is due to Microsoft's announcement in 2022 to disable macros by default for Office documents downloaded from unknown...

A recent discovery highlights a significant QR code phishing campaign that targets Microsoft credentials across various industries.  Notably, a major energy company based in the US is at the forefront of this attack, underscoring the...

Microsoft Threat intelligence identifies Midnight Blizzard (previously tracked as NOBELIUM) as a highly targeted social engineering attack. The attacker uses compromised Microsoft 365 tenants owned by small businesses to create new domains that appear as...

Malware authors persistently seek novel approaches to exploit unsuspecting users in the active cyber threat landscape. To easily locate all the available files, folders, and other items on your Windows system, Microsoft Windows OS offers...

China's Storm-0558 hacked 25 organizations, including government agencies, using fake tokens for email access, aiming at espionage since May 15, 2023. However, Storm-0558's campaign was blocked by Microsoft without affecting other environments. Not only that...

A total of 132 new security flaws in Microsoft's products were patched, including six zero-day issues that the company claimed were being actively used in the wild. Nine of the 130 vulnerabilities have a severity rating...

Microsoft has taken another step towards security which has revolutionized the way security professionals use Microsoft 365 Defender across devices as well as cloud applications. This time they have pivoted the process of examining...