Tag: microsoft

TAMECAT PowerShell Backdoor Targets Edge and Chrome: Login Credentials At Risk

Jan 30, 2026 4:22 PM

Tags: backdoor, browser, chrome, credentials, cyber, defense, espionage, government, hacking, iran, login, microsoft, powershell, risk

TAMECAT is a sophisticated PowerShell-based backdoor linked to APT42, an Iranian state-sponsored hacking group. It steals login credentials from Microsoft Edge and Chrome browsers while evading detection. Security researchers from Israel’s National Digital Agency detailed its modular design in recent SpearSpecter campaign analysis.”‹ APT42 deploys TAMECAT in long-term espionage operations against senior defense and government…
Attackers Weaponize Microsoft 365 Outlook Add-ins to Quietly Exfiltrate Email Data

Jan 30, 2026 4:22 PM

Tags: access, cyber, data, email, microsoft, monitoring, theft

A stealthy data theft technique in Microsoft 365 that abuses Outlook add-ins to exfiltrate email content without leaving meaningful forensic traces. The technique, dubbed “Exfil Out&Look,” takes advantage of how Outlook Web Access (OWA) handles add-ins and audit logging, creating a blind spot that traditional Microsoft 365 monitoring cannot see. Outlook add-ins are small web-based…
Windows 11 KB5074105 update fixes boot, sign-in, and activation issues

Jan 30, 2026 2:23 PM

Tags: microsoft, update, windows

Microsoft has released the KB5074105 preview cumulative update for Windows 11 systems, which includes 32 changes, including fixes for sign-in, boot, and activation issues. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/windows-11-kb5074105-update-fixes-boot-sign-in-and-activation-issues/
Microsoft sets new timeline for Sentinel transition to Defender portal

Jan 30, 2026 1:21 PM

Tags: microsoft

Microsoft has updated the timeline for transitioning the Microsoft Sentinel experience from the Azure portal to the Microsoft Defender portal from July 1, 2026 to March 31, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/30/microsoft-transitioning-sentinel-to-defender-timeline/
Systemd daddy quits Microsoft to prove Linux can be trusted

Jan 30, 2026 11:28 AM

Tags: linux, microsoft

Lennart Poettering’s Amutable aims to bring ‘cryptographically verifiable integrity’ to the other OS First seen on theregister.com Jump to article: www.theregister.com/2026/01/29/lennart_poettering_quits_microsoft/
ShinyHunters ramp up new vishing campaign with 100s in crosshairs

Jan 30, 2026 5:21 AM

Tags: advisory, attack, authentication, breach, communications, control, credentials, cybercrime, cybersecurity, data, data-breach, finance, google, group, hacker, hacking, infrastructure, intelligence, login, mfa, microsoft, mobile, okta, phishing, phone, saas, security-incident, social-engineering, tactics, theft, tool, unauthorized

<img loading="lazy" decoding="async" src="https://b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?w=1024" alt="ShinyHunters data dump" class="wp-image-4124689" srcset="https://b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?quality=50&strip=all 2260w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=300%2C182&quality=50&strip=all 300w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=768%2C466&quality=50&strip=all 768w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=1024%2C621&quality=50&strip=all 1024w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=1536%2C931&quality=50&strip=all 1536w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=2048%2C1241&quality=50&strip=all 2048w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=1150%2C697&quality=50&strip=all 1150w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=277%2C168&quality=50&strip=all 277w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=139%2C84&quality=50&strip=all 139w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=792%2C480&quality=50&strip=all 792w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=594%2C360&quality=50&strip=all 594w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=412%2C250&quality=50&strip=all 412w” width=”1024″ height=”621″ sizes=”auto, (max-width: 1024px) 100vw, 1024px” /> CSOIn operation since 2020, ShinyHunters, also tracked as UNC6040, has stolen data from many well-known…
ShinyHunters ramp up new vishing campaign with 100s in crosshairs

Jan 30, 2026 5:21 AM

Tags: advisory, attack, authentication, breach, communications, control, credentials, cybercrime, cybersecurity, data, data-breach, finance, google, group, hacker, hacking, infrastructure, intelligence, login, mfa, microsoft, mobile, okta, phishing, phone, saas, security-incident, social-engineering, tactics, theft, tool, unauthorized

<img loading="lazy" decoding="async" src="https://b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?w=1024" alt="ShinyHunters data dump" class="wp-image-4124689" srcset="https://b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?quality=50&strip=all 2260w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=300%2C182&quality=50&strip=all 300w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=768%2C466&quality=50&strip=all 768w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=1024%2C621&quality=50&strip=all 1024w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=1536%2C931&quality=50&strip=all 1536w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=2048%2C1241&quality=50&strip=all 2048w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=1150%2C697&quality=50&strip=all 1150w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=277%2C168&quality=50&strip=all 277w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=139%2C84&quality=50&strip=all 139w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=792%2C480&quality=50&strip=all 792w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=594%2C360&quality=50&strip=all 594w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=412%2C250&quality=50&strip=all 412w” width=”1024″ height=”621″ sizes=”auto, (max-width: 1024px) 100vw, 1024px” /> CSOIn operation since 2020, ShinyHunters, also tracked as UNC6040, has stolen data from many well-known…
Microsoft links Windows 11 boot failures to failed December 2025 update

Jan 30, 2026 5:21 AM

Tags: microsoft, update, windows

Microsoft has linked recent reports of Windows 11 boot failures after installing the January 2026 updates to previously failed attempts to install the December 2025 security update, which left systems in an “improper state.” First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-links-windows-11-boot-failures-to-failed-december-2025-update/
MY TAKE: Transparent vs. opaque, edit Claude’s personalized memory, or trust ChatGPT’s blindly?

Jan 30, 2026 1:21 AM

Tags: ai, chatgpt, microsoft

After two years of daily ChatGPT use, I recently started experimenting with Claude, Anthropic’s competing AI assistant. Related: Microsofts see a ‘protopian’ AI future Claude is four to five times slower generating responses. But something emerged that matters more than… (more”¦) First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/01/my-take-transparent-vs-opaque-edit-claudes-personalized-memory-or-trust-chatgpts-blindly/
MY TAKE: Transparent vs. opaque, edit Claude’s personalized memory, or trust ChatGPT’s blindly?

Jan 30, 2026 1:21 AM

Tags: ai, chatgpt, microsoft

After two years of daily ChatGPT use, I recently started experimenting with Claude, Anthropic’s competing AI assistant. Related: Microsofts see a ‘protopian’ AI future Claude is four to five times slower generating responses. But something emerged that matters more than… (more”¦) First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/01/my-take-transparent-vs-opaque-edit-claudes-personalized-memory-or-trust-chatgpts-blindly/
Breach Roundup: Android RAT Hides Behind Hugging Face

Jan 29, 2026 11:22 PM

Tags: android, breach, cisa, cyber, data-breach, exploit, flaw, microsoft, rat, vmware

Also, SmarterMail Flaw, Nike Breach Probe, Empire Market Co-Creator Pleads Guilty. This week, researchers exposed an Android RAT abusing Hugging Face. Attackers exploited a SmarterMail flaw. Automakers raised cyber spending. CISA flagged a VMware bug. Microsoft patched Office. An Empire Market co-creator pleaded guilty. Nike probed a breach. First seen on govinfosecurity.com Jump to article:…
Microsoft releases update to address zero-day vulnerability in Microsoft Office

Jan 29, 2026 4:26 PM

Tags: microsoft, office, update, vulnerability, zero-day

Microsoft has published three out-of-band (OOB) updates so far in January 2026. One of these updates was released to address a vulnerability, CVE-2026-21509, affecting Microsoft Office that has been reportedly exploited in the wild. First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/microsoft-oob-update-january-2026/
New Microsoft Teams feature will let you report suspicious calls

Jan 29, 2026 4:26 PM

Tags: microsoft, phishing, scam

Microsoft plans to introduce a call reporting feature in Teams by mid-March, allowing users to flag suspicious or unwanted calls as potential scams or phishing attempts. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/new-microsoft-teams-feature-will-let-you-report-suspicious-calls/
Zoom and Microsoft Teams Lose French Government Trust After Security Review

Jan 29, 2026 4:26 PM

Tags: cyber, government, microsoft

France’s government has made a decisive move to eliminate foreign videoconferencing platforms from its operations, rejecting Zoom and Microsoft Teams in favor of a domestically controlled alternative. On January 26, 2026, France announced the nationwide rollout of >>Visio,<< a sovereign videoconferencing solution developed by the Interministerial Directorate for Digital Affairs (DINUM), with full deployment across…
Microsoft Previews Windows 11 Update With Smarter AI and Phone Continuity

Jan 29, 2026 3:24 PM

Tags: ai, microsoft, phone, update, windows

Here’s a peek at AI assistance, phone-to-PC handoff, accessibility improvements, security fixes, and stability updates. The post Microsoft Previews Windows 11 Update With Smarter AI and Phone Continuity appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-windows-11-preview-ai-phone-upgrades/
Conditional Access enforcement change coming to Microsoft Entra

Jan 29, 2026 1:23 PM

Tags: access, microsoft

Microsoft will change how Conditional Access policies are enforced in Microsoft Entra starting March 27, 2026, with a phased rollout continuing through June 2026. The change … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/29/microsoft-entra-conditional-access-policy-enforcement/
NDSS 2025 Recurrent Private Set Intersection For Unbalanced Databases With Cuckoo Hashing

Jan 29, 2026 5:21 AM

Tags: conference, email, encryption, Internet, microsoft, network, privacy, threat

Session 10C: Privacy Preservation Authors, Creators & Presenters: Eduardo Chielle (New York University Abu Dhabi), Michail Maniatakos (New York University Abu Dhabi) PAPER Recurrent Private Set Intersection for Unbalanced Databases with Cuckoo Hashing and Leveled FHE A Private Set Intersection (PSI) protocol is a cryptographic method allowing two parties, each with a private set, to…
Fake Moltbot AI Coding Assistant on VS Code Marketplace Drops Malware

Jan 28, 2026 8:22 PM

Tags: ai, cybersecurity, intelligence, malicious, malware, marketplace, microsoft

Cybersecurity researchers have flagged a new malicious Microsoft Visual Studio Code (VS Code) extension for Moltbot (formerly Clawdbot) on the official Extension Marketplace that claims to be a free artificial intelligence (AI) coding assistant, but stealthily drops a malicious payload on compromised hosts.The extension, named “ClawdBot Agent – AI Coding Assistant” (“clawdbot.clawdbot-agent”) First seen on…
Microsoft Exchange Online to End Support for SMTP AUTH Basic Authentication

Jan 28, 2026 4:23 PM

Tags: authentication, cyber, email, microsoft

Microsoft has announced a revised deprecation timeline for SMTP AUTH Basic Authentication in Exchange Online, giving organizations an extended runway to modernize legacy email workflows. The updated schedule reflects customer feedback and adoption challenges, providing clearer milestones through 2027 before the authentication method is permanently retired. The new deprecation roadmap addresses real-world implementation barriers facing…
If you don’t control your keys, you don’t control your data

Jan 28, 2026 12:21 PM

Tags: control, data, encryption, law, microsoft

A recent Forbes investigation revealed that Microsoft has allegedly been handing over Bitlocker encryption recovery keys to law enforcement when served with warrants. Microsoft says it receives about 20 such requests annually. Taken narrowly, this may appear to be a routine case of lawful compliance. On closer inspection, it raises a consequential question about how…
French government abandons Zoom and Microsoft Teams over security concerns

Jan 28, 2026 12:21 PM

Tags: government, microsoft

France intends to phase out non-European videoconferencing platforms such as Zoom and Microsoft Teams from its public administration, opting instead for a nationally developed … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/28/france-zoom-teams-visio-public-administration/
CVE-2026-21509 – Microsoft schließt Zero Days in Office im Eiltempo

Jan 28, 2026 7:21 AM

Tags: cve, microsoft, office, zero-day

First seen on security-insider.de Jump to article: www.security-insider.de/microsoft-sicherheitsluecke-cve-2026-21509-office-update-a-bcf2b30c791d0772c56512f96c0c97f1/
Fixes released for a serious Microsoft Office zero-day flaw

Jan 28, 2026 1:21 AM

Tags: flaw, microsoft, office, zero-day

This article originally appeared on Computerworld. First seen on csoonline.com Jump to article: www.csoonline.com/article/4123146/fixes-released-for-a-serious-microsoft-office-zero-day-flaw-2.html
Microsoft Issues Emergency Patch for Active Office Zero-Day

Jan 28, 2026 12:21 AM

Tags: exploit, flaw, malicious, microsoft, office, update, zero-day

Microsoft released an emergency Office patch to fix an actively exploited zero-day flaw that lets attackers bypass security via malicious files. The post Microsoft Issues Emergency Patch for Active Office Zero-Day appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-microsoft-office-zero-day-emergency-patch-january-2026/
There’s a rash of scam spam coming from a real Microsoft address

Jan 28, 2026 12:21 AM

Tags: microsoft, scam, spam

Abusing Microsoft’s reputation may make scam harder to spot. First seen on arstechnica.com Jump to article: arstechnica.com/information-technology/2026/01/theres-a-rash-of-scam-spam-coming-from-a-real-microsoft-address/
Microsoft Rushes Emergency Patch for Office Zero-Day

Jan 27, 2026 11:21 PM

Tags: access, exploit, malicious, microsoft, office, update, vulnerability, zero-day

To exploit the vulnerability, an attacker would need either system access or be able to convince a user to open a malicious Office file. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/microsoft-rushes-emergency-patch-office-zero-day
AI is Now Default Enterprise Accelerator: Takeaways from ThreatLabz 2026 AI Security Report

Jan 27, 2026 10:25 PM

Tags: access, ai, attack, automation, chatgpt, compliance, control, data, detection, finance, google, governance, infrastructure, injection, insurance, intelligence, malicious, malware, microsoft, ml, monitoring, RedTeam, risk, saas, social-engineering, supply-chain, tactics, technology, threat, tool, vulnerability, zero-trust

Artificial intelligence and machine learning (AI/ML) are no longer emerging capabilities inside enterprise environments. In 2025, they became a persistent operating layer for how work gets done. Developers ship faster, marketers generate more content, analysts automate research, and IT teams rely on AI to streamline troubleshooting and operations. The productivity gains are real, but so…
Let them eat sourdough: ShinyHunters claims Panera Bread as stolen credentials victim

Jan 27, 2026 9:21 PM

Tags: breach, credentials, microsoft

Plus, the gang says it got in via Microsoft Entra SSO First seen on theregister.com Jump to article: www.theregister.com/2026/01/27/shinyhunters_claim_panera_bread/
APT Attacks Target Indian Government Using SHEETCREEP, FIREPOWER, and MAILCREEP – Part 2

Jan 27, 2026 6:24 PM

Tags: access, ai, api, apt, attack, backdoor, backup, cloud, control, credentials, data, dns, email, exploit, github, google, government, group, india, infection, infrastructure, Internet, linux, malicious, malware, microsoft, monitoring, network, phishing, powershell, programming, service, tactics, threat, tool, update, windows

This is Part 2 of our two-part technical analysis on the Gopher Strike and Sheet Attack campaigns. For details on the Gopher Strike campaign, go to Part 1.IntroductionIn September 2025, Zscaler ThreatLabz uncovered three additional backdoors, SHEETCREEP, FIREPOWER, and MAILCREEP, used to power the Sheet Attack campaign. In Part 2 of this series, ThreatLabz will…
10 Hot Agentic SOC Tools In 2026

Jan 27, 2026 6:24 PM

Tags: ai, crowdstrike, microsoft, network, soc, tool

Among the hottest agentic SOC tools in 2026 include AI-powered security operations tools from CrowdStrike, Microsoft, Palo Alto Networks, SentinelOne and Zscaler. First seen on crn.com Jump to article: www.crn.com/news/security/2026/10-hot-agentic-soc-tools-in-2026