Tag: microsoft

Microsoft kicks new Outlook opt-out deadline down the road to 2027

Mar 8, 2026 9:47 AM

Tags: microsoft

Admins get another year before migration pressure ramps up First seen on theregister.com Jump to article: www.theregister.com/2026/03/06/microsoft_outlook_migration_postponed/
USENIX Security ’25 (Enigma Track) AI Red Teaming And Automation: Exploring Societal Risks In GenAI

Mar 7, 2026 6:47 PM

Tags: ai, automation, microsoft, RedTeam, risk

Author, Creator & Presenter: Bolor-Erdene Jagdagdorj, Microsoft AI Red Team, Auto-Dubbed For Some Languages Was Automagically Generated Our thanks to USENIX Security ’25 (Enigma Track) (USENIX ’25 for publishing their Creators, Authors and Presenter’s tremendous USENIX Security ’25 (Enigma Track) content on the Organizations’ YouTube Channel. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/usenix-security-25-enigma-track-ai-red-teaming-and-automation-exploring-societal-risks-in-genai/
Hackers abusing AI at every stage of cyberattacks

Mar 7, 2026 5:47 PM

Tags: ai, attack, cyberattack, hacker, intelligence, malicious, microsoft, threat

Microsoft says threat actors are increasingly using artificial intelligence in their operations to accelerate attacks, scale malicious activity, and lower technical barriers across all aspects of a cyberattack. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/microsoft-hackers-abusing-ai-at-every-stage-of-cyberattacks/
Microsoft 365: Jedes zweite Unternehmen stoppt KI-Projekte

Mar 7, 2026 10:47 AM

Tags: ai, automation, governance, microsoft

Für 82 Prozent stellt Microsoft 365 eine erhebliche operative Herausforderung dar, die mittels Automation noch nicht hinreichend adressiert werden kann. Jedes zweite Unternehmen stoppt KI-Projekte wegen Sicherheits- und Governance-Bedenken. 51 Prozent der Unternehmen weltweit haben KI-basierte Änderungen in Microsoft 365 aufgrund von Sicherheits- oder Governance-Bedenken rückgängig gemacht (Deutschland: 46 %). Gleichzeitig sehen knapp drei… First…
ClickFix attackers using new tactic to evade detection, says Microsoft

Mar 6, 2026 11:48 PM

Tags: access, attack, awareness, blockchain, ciso, computer, control, crypto, cybersecurity, defense, detection, email, endpoint, infosec, infrastructure, injection, login, malicious, malware, microsoft, phishing, powershell, risk, tactics, tool, training, windows

AppData\Local that is then invoked through cmd.exe to write a VBScript to %Temp%. The batch script is executed via cmd.exe with the /launched command-line argument, and is then executed again through MSBuild.exe, resulting in LOLBin abuse. The script connects to Crypto Blockchain RPC endpoints, indicating etherhiding technique, and also performs QueueUserAPC()-based code injection into chrome.exe…
Microsoft warns North Korean threat groups are scaling up fake worker schemes with generative AI

Mar 6, 2026 8:46 PM

Tags: ai, country, group, microsoft, north-korea, threat

Attackers have turned AI into a “force multiplier” for the country’s expansive scheme to get and keep operatives hired at global companies, researchers said. First seen on cyberscoop.com Jump to article: cyberscoop.com/microsoft-north-korea-ai-operations/
Bitwarden Brings Passkey Logins to Windows 11, Expanding Passwordless Sign-Ins

Mar 6, 2026 6:47 PM

Tags: login, microsoft, passkey, windows

Bitwarden now supports passkey logins on Windows 11 for Microsoft Entra ID users, extending passwordless sign-ins to device authentication. The post Bitwarden Brings Passkey Logins to Windows 11, Expanding Passwordless Sign-Ins appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-bitwarden-passkey-windows-11-sign-in/
North Korean agents using AI to trick western firms into hiring them, Microsoft says

Mar 6, 2026 6:47 PM

Tags: ai, breach, jobs, korea, microsoft, north-korea, programming, software, technology, tool

Firm says AI tools are masking identities of false applicants, who then funnel wages from remote IT jobs to North KoreaFake IT workers deployed by North Korea are using AI technology, including voice-changing tools, to trick western companies into hiring them, Microsoft has said.The US tech firm said a signature Pyongyang money-raising ruse is being…
Microsoft Copilot to hijack your browser… for your own convenience

Mar 6, 2026 4:48 PM

Tags: ai, microsoft

Embeds Edge into AI assistant, ignores questions about opt-in First seen on theregister.com Jump to article: www.theregister.com/2026/03/05/microsoft_adds_a_sidepane_for/
Microsoft spots ClickFix campaign getting users to self-pwn on Windows Terminal

Mar 6, 2026 3:48 PM

Tags: malicious, microsoft, windows

Crooks tweak familiar copy-paste ruse so that victims run malicious commands themselves First seen on theregister.com Jump to article: www.theregister.com/2026/03/06/microsoft_spots_clickfix_campaign_abusing/
Microsoft warns of ClickFix campaign exploiting Windows Terminal to deliver Lumma Stealer

Mar 6, 2026 3:48 PM

Tags: attack, exploit, malicious, microsoft, risk, social-engineering, windows

Microsoft warns of ClickFix campaign using Windows Terminal to deliver Lumma Stealer via social engineering attacks. Microsoft revealed a new ClickFix campaign where attackers exploit Windows Terminal to run a complex attack chain, ultimately deploying Lumma Stealer malware. The campaign uses social engineering to trick users into executing malicious commands, highlighting growing risks to Windows…
Microsoft working on Teams feature to keep unauthorized bots at bay

Mar 6, 2026 3:48 PM

Tags: control, microsoft, unauthorized

Microsoft plans to add a new Teams feature that lets meeting admins identify and control third-party bots before they join. According to the Microsoft 365 Roadmap, the feature … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/06/microsoft-teams-third-party-bot-identification/
Microsoft 365 Backup to add file-level restore for faster recovery

Mar 6, 2026 3:48 PM

Tags: backup, microsoft

Microsoft will soon begin rolling out a significant upgrade to Microsoft 365 Backup to speed up recovery by allowing administrators to restore individual files and folders. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-365-backup-to-add-file-level-restore-for-faster-recovery/
Microsoft working on Teams feature to help admins block unauthorized bots

Mar 6, 2026 2:47 PM

Tags: control, microsoft, unauthorized

Microsoft plans to add a new Teams feature that lets meeting admins identify and control third-party bots before they join. According to the Microsoft 365 Roadmap, the feature … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/06/microsoft-teams-third-party-bot-identification/
Microsoft finally gets around to fixing Windows 10 Recovery Environment after breaking it in October

Mar 6, 2026 1:47 PM

Tags: microsoft, update, windows

Released from the curse of the update bork fairy First seen on theregister.com Jump to article: www.theregister.com/2026/03/06/microsoft_finally_gets_around_to/
Microsoft Reveals ClickFix Campaign Using Windows Terminal to Deploy Lumma Stealer

Mar 6, 2026 9:48 AM

Tags: attack, microsoft, social-engineering, windows

Microsoft on Thursday disclosed details of a new widespread ClickFix social engineering campaign that has leveraged the Windows Terminal app as a way to activate a sophisticated attack chain and deploy the Lumma Stealer malware.The activity, observed in February 2026, makes use of the terminal emulator program instead of instructing users to launch the Windows…
Europa im Visier von Cyber-Identitätsdieben

Mar 6, 2026 5:47 AM

Tags: ai, authentication, china, cloud, cve, cyber, cyberattack, exploit, germany, google, korea, lazarus, mail, malware, mfa, microsoft, phishing, ransomware, saas, sap, service, strategy, threat, vpn, vulnerability

Deutsche Unternehmen müssen sich warm anziehen: Sowohl staatliche als auch ‘private” Akteure haben es auf sie abgesehen.ShutterstockWie die Experten von Darktrace in ihrem aktuellen Threat Report 2026 darstellen, bleiben Cloud- und E-Mail-Konten das Einfallstor Nummer Eins in Europa. Dem Bericht zufolge begannen im vergangenen Jahr in Europa 58 Prozent der Attacken mit kompromittierten Cloud-Accounts oder…
Bing AI promoted fake OpenClaw GitHub repo pushing info-stealing malware

Mar 6, 2026 12:47 AM

Tags: ai, github, malware, microsoft

Fake OpenClaw installers hosted in GitHub repositories and promoted by Microsoft Bing’s AI-enhanced search feature instructed users to run commands that deployed information stealers and proxy malware. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/bing-ai-promoted-fake-openclaw-github-repo-pushing-info-stealing-malware/
Breach Roundup: Patches and Hacks on Cisco Equipment

Mar 5, 2026 11:46 PM

Tags: 2fa, breach, cisco, microsoft

Also: Trojanized RedAlert App, Tycoon 2FA Takedown, CyberStrikeAI Attacks. This week, Cisco patches and hacks. Trojanized app targeted Israelis. Bye-bye, Tycoon 2FA. Also bye-bye LeakBase. A LexisNexis breach. Woman sentenced for trafficking Microsoft licenses. Silver Dragon targeted governments. Broadcom patch. A Mississippi medical clinic resumed operations. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/breach-roundup-patches-hacks-on-cisco-equipment-a-30927
Breach Roundup: Patches and Hacks on Cisco Equipment

Mar 5, 2026 11:46 PM

Tags: 2fa, breach, cisco, microsoft

Also: Trojanized RedAlert App, Tycoon 2FA Takedown, CyberStrikeAI Attacks. This week, Cisco patches and hacks. Trojanized app targeted Israelis. Bye-bye, Tycoon 2FA. Also bye-bye LeakBase. A LexisNexis breach. Woman sentenced for trafficking Microsoft licenses. Silver Dragon targeted governments. Broadcom patch. A Mississippi medical clinic resumed operations. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/breach-roundup-patches-hacks-on-cisco-equipment-a-30927
Microsoft, Europol disrupt global phishing platform Tycoon 2FA

Mar 5, 2026 5:47 PM

Tags: 2fa, authentication, business, cybercrime, email, microsoft, phishing, service

The service helped cybercriminals bypass multifactor authentication and led to business email compromise and ransomware. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/microsoft-europol-disrupt-phishing-tycoon-2fa/813904/
Users fume at Outlook.com email ‘carnage’

Mar 5, 2026 5:47 PM

Tags: email, microsoft

Email flow slowed or stopped by mysterious forces at Microsoft First seen on theregister.com Jump to article: www.theregister.com/2026/03/04/users_fume_at_outlookcom_email/
Jedes zweite Unternehmen stoppt Projekte mit künstlicher Intelligenz wegen Sicherheits- und Governance-Bedenken

Mar 5, 2026 4:46 PM

Tags: ai, governance, microsoft

51 Prozent der Unternehmen weltweit haben KI-basierte Änderungen in Microsoft-365 aufgrund von Sicherheits- oder Governance-Bedenken rückgängig gemacht (Deutschland: 46 %). Gleichzeitig sehen knapp drei Viertel (70 %) der IT-Verantwortlichen in einem KI-gesteuerten Management enorme Vorteile für die eigenen Prozesse. Zu diesen und weiteren Ergebnissen kommt der neue Report ‘2026 State of AI in Microsoft 365″…
Spionagekampagne gegen Südkorea Angriff missbraucht Microsoft VS Code für Spionage

Mar 5, 2026 1:47 PM

Tags: apt, cyberattack, microsoft

First seen on security-insider.de Jump to article: www.security-insider.de/apt-angriff-vs-code-spionage-suedkorea-dprk-a-72b28bd8c65fb0d7f3021b27ce2ab586/
Okta vs Microsoft Entra ID: Which Enterprise SSO Platform Is Better?

Mar 5, 2026 12:47 PM

Tags: authentication, identity, microsoft, okta, saas

Compare Okta vs Microsoft Entra ID for enterprise SSO. Learn differences in authentication, security, and identity management for SaaS and enterprise platforms. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/okta-vs-microsoft-entra-id-which-enterprise-sso-platform-is-better/
Where Multi-Factor Authentication Stops and Credential Abuse Starts

Mar 5, 2026 12:47 PM

Tags: access, authentication, breach, credentials, identity, mfa, microsoft, network, okta, password, windows

Organizations typically roll out multi-factor authentication (MFA) and assume stolen passwords are no longer enough to access systems. In Windows environments, that assumption is often wrong. Attackers still compromise networks every day using valid credentials. The issue is not MFA itself, but coverage. Enforced through an identity provider (IdP) such as Microsoft Entra ID, Okta,…
Europol greift durch: Eine der weltweit größten Phishing-Plattformen zerschlagen

Mar 5, 2026 10:47 AM

Tags: 2fa, google, microsoft, phishing

Mit Tycoon 2FA konnten Angreifer per Abo Phishing-Kampagnen starten und etwa Microsoft- und Google-Konten kapern. Doch das ist jetzt vorbei. First seen on golem.de Jump to article: www.golem.de/news/europol-greift-durch-eine-der-weltweit-groessten-phishing-plattformen-zerschlagen-2603-206122.html
Europol greift durch: Eine der weltweit größten Phishing-Plattformen zerschlagen

Mar 5, 2026 10:47 AM

Tags: 2fa, google, microsoft, phishing

Mit Tycoon 2FA konnten Angreifer per Abo Phishing-Kampagnen starten und etwa Microsoft- und Google-Konten kapern. Doch das ist jetzt vorbei. First seen on golem.de Jump to article: www.golem.de/news/europol-greift-durch-eine-der-weltweit-groessten-phishing-plattformen-zerschlagen-2603-206122.html
Europol greift durch: Eine der weltweit größten Phishing-Plattformen zerschlagen

Mar 5, 2026 10:47 AM

Tags: 2fa, google, microsoft, phishing

Mit Tycoon 2FA konnten Angreifer per Abo Phishing-Kampagnen starten und etwa Microsoft- und Google-Konten kapern. Doch das ist jetzt vorbei. First seen on golem.de Jump to article: www.golem.de/news/europol-greift-durch-eine-der-weltweit-groessten-phishing-plattformen-zerschlagen-2603-206122.html
Nach Monaten gefixt: Microsoft gesteht Recovery-Panne unter Windows 10

Mar 5, 2026 9:47 AM

Tags: microsoft, windows

Die Wiederherstellungsumgebung von Windows 10 ist auf einigen Systemen seit Oktober 2025 unbrauchbar. Eine Lösung gibt es erst jetzt. First seen on golem.de Jump to article: www.golem.de/news/nach-monaten-gefixt-microsoft-gesteht-recovery-panne-unter-windows-10-2603-206117.html