Tag: microsoft
-
Nightmare Eclipse incident shows the researcher-vendor fights may never fully go away
When a researcher went public with Microsoft vulnerabilities, it laid bare a conflict that has never really been solved. First seen on cyberscoop.com Jump to article: cyberscoop.com/microsoft-coordinated-vulnerability-disclosure-debacle/
-
New Threat Cluster OP-512 Targets Microsoft IIS Servers with Custom Web Shell Framework
Cybersecurity researchers have discovered a previously unreported threat cluster dubbed OP-512 that has been observed targeting Microsoft Internet Information Services (IIS) servers to deploy a bespoke web shell framework.ReliaQuest has assessed with moderate to high confidence that the espionage-focused activity is linked to China.”OP-512 was highly likely conducting espionage through a First seen on thehackernews.com…
-
New Threat Cluster OP-512 Targets Microsoft IIS Servers with Custom Web Shell Framework
Cybersecurity researchers have discovered a previously unreported threat cluster dubbed OP-512 that has been observed targeting Microsoft Internet Information Services (IIS) servers to deploy a bespoke web shell framework.ReliaQuest has assessed with moderate to high confidence that the espionage-focused activity is linked to China.”OP-512 was highly likely conducting espionage through a First seen on thehackernews.com…
-
PCPJack Exposed: Researchers Uncover 230-Node Cloud Email Relay Network
Researchers uncovered a 230-node cloud-based email relay network after the actor PCPJack accidentally exposed tools, logs, and C2 files online A threat actor tracked as PCPJack compromised 230 cloud servers across Amazon Web Services, Google Cloud, and Microsoft Azure and turned them into a covert email relay network. Hunt.io researchers discovered the operation because PCPJack…
-
FBI warnt vor Phishing-Plattform Kali365 – Kali365 missbraucht legitimen Microsoft-Flow um MFA zu umgehen
First seen on security-insider.de Jump to article: www.security-insider.de/kali365-phishing-microsoft-365-mfa-oauth-device-code-flow-a-4571206ba2a0d237ebb8bb01d289ff61/
-
Strategische Partnerschaft – NATO stärkt Cyberabwehr mit Eset, Microsoft und Palo Alto
Tags: microsoftFirst seen on security-insider.de Jump to article: www.security-insider.de/nato-staerkt-cyberabwehr-mit-eset-microsoft-und-palo-alto-a-73faefac7e5c0a61b2866e3fca61f7b3/
-
Strategische Partnerschaft – NATO stärkt Cyberabwehr mit Eset, Microsoft und Palo Alto
Tags: microsoftFirst seen on security-insider.de Jump to article: www.security-insider.de/nato-staerkt-cyberabwehr-mit-eset-microsoft-und-palo-alto-a-73faefac7e5c0a61b2866e3fca61f7b3/
-
Microsoft Edge Vulnerability Lets Remote Attackers Execute Arbitrary Code
Microsoft has disclosed three critical vulnerabilities in its Edge browser, all discovered during the Pwn2Own competition and reported by security researcher Orange Tsai of DEVCORE Research Team. The flaws, tracked as CVE-2026-45492, CVE-2026-45494, and CVE-2026-45495, were publicly disclosed on June 4, 2026, with patches already issued by Microsoft. Overview of the Vulnerability CVE-2026-45492 Origin […]…
-
Microsoft Edge Vulnerability Lets Remote Attackers Execute Arbitrary Code
Microsoft has disclosed three critical vulnerabilities in its Edge browser, all discovered during the Pwn2Own competition and reported by security researcher Orange Tsai of DEVCORE Research Team. The flaws, tracked as CVE-2026-45492, CVE-2026-45494, and CVE-2026-45495, were publicly disclosed on June 4, 2026, with patches already issued by Microsoft. Overview of the Vulnerability CVE-2026-45492 Origin […]…
-
PCPJack Hijacks 230 AWS, Google Cloud, and Azure Servers for Covert SMTP Relay Network
The threat actor known as PCPJack has hijacked cloud servers associated with Amazon Web Services (AWS), Google Cloud, and Microsoft Azure to create a covert SMTP email relay network.”Compromised business servers across the U.S., Europe, and Asia were quietly converted into SMTP proxies, verified for mail relay capability, and synced to a downstream consumer every…
-
Breach Roundup: Microsoft Tries to Mend Researcher Bridges
Also: Gas Station Monitoring Systems Under Attack, Spanish Teen Doxer Arrested. This week, more happened than fits here: Microsoft tried to make nice with researchers, gas tank gauges under attack in the United States, fake FIFA websites are everywhere. Russia cried cyberespionage, Spanish police arrested a teenaged doxer, a Oracle Weblogic flaw was actively exploited.…
-
Breach Roundup: Microsoft Tried to Mend Researcher Bridges
Also: Gas Station Monitoring Systems Under Attack, Spanish Teen Doxer Arrested. This week, more happened than fits here: Microsoft tried to make nice with researchers, gas tank gauges under attack in the United States, fake FIFA websites are everywhere. Russia cried cyberespionage, Spanish police arrested a teenaged doxer, a Oracle Weblogic flaw was actively exploited.…
-
Datenklau per App: Unzählige Microsoft-Nutzer durch winzige Codepanne gefährdet
Microsoft hat in mehreren seiner Android-Apps versäumt, ein Debugging-Flag zurückzusetzen. Angreifer konnten dadurch Nutzerkonten kapern. First seen on golem.de Jump to article: www.golem.de/news/android-apps-codepanne-bei-microsoft-gefaehrdet-daten-unzaehliger-nutzer-2606-209407.html
-
Microsoft 365 Android Apps Had a Token Flaw IT Teams Should Check Now
A debug flag left active in six Microsoft 365 Android apps allowed another installed app on the same device to request account tokens without user interaction. The post Microsoft 365 Android Apps Had a Token Flaw IT Teams Should Check Now appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-microsoft-365-android-token-flaw/
-
Researcher publishes GitHub token-stealing exploit, blames Microsoft’s disclosure process
The security researcher, Ammar Askar, released the new proof-of-concept exploit on his personal blog, alongside the public tracker for issues in VS Code, giving a GitHub security contact roughly one hour’s notice beforehand. First seen on therecord.media Jump to article: therecord.media/researcher-publishes-github-token-stealing-exploit-microsoft
-
Barracuda Finds Malicious Microsoft 365 Logins Are Blending In
Barracuda finds that trusted Microsoft 365 logins can hide attacks. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/barracuda-finds-malicious-microsoft-365-logins-are-blending-in/
-
Microsoft blames unexpected Windows driver updates on caching issue
On Wednesday, Microsoft fixed an issue that caused some Windows devices to install driver updates without notice despite policies configured to prevent auto-updates. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-blames-unexpected-windows-driver-updates-on-caching-issue/
-
Infosecurity Europe: AI Adoption Creates New Opportunities for Attackers to Distribute Malware, Microsoft Warns
Microsoft Detection and Response Team (DART) details how it has uncovered malicious AI applications as cyber criminals manipulate organizations adopting AI tools First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/attackers-ai-adoption-malware/
-
Bug in Android-Apps: Unzählige Microsoft-Nutzer durch winzige Codepanne gefährdet
Microsoft hat in mehreren seiner Android-Apps versäumt, ein Debugging-Flag zurückzusetzen. Angreifer konnten dadurch Nutzerkonten kapern. First seen on golem.de Jump to article: www.golem.de/news/android-apps-codepanne-bei-microsoft-gefaehrdet-daten-unzaehliger-nutzer-2606-209407.html
-
Bug in Android-Apps: Winzige Codepanne gefährdet Daten unzähliger Microsoft-Nutzer
Microsoft hat in mehreren seiner Android-Apps versäumt, ein Debugging-Flag zurückzusetzen. Angreifer konnten dadurch Nutzerkonten kapern. First seen on golem.de Jump to article: www.golem.de/news/android-apps-codepanne-bei-microsoft-gefaehrdet-daten-unzaehliger-nutzer-2606-209407.html
-
Android-Apps: Codepanne bei Microsoft gefährdet Daten unzähliger Nutzer
Microsoft hat in mehreren seiner Android-Apps versäumt, ein Debugging-Flag zurückzusetzen. Angreifer konnten dadurch Nutzerkonten kapern. First seen on golem.de Jump to article: www.golem.de/news/android-apps-codepanne-bei-microsoft-gefaehrdet-daten-unzaehliger-nutzer-2606-209407.html
-
Stock Exchange Executive’s Outlook Targeted in Credential Theft Attack
A prolonged and highly targeted espionage campaign has been uncovered involving the compromise of a senior executive’s Microsoft Outlook account at a major global stock exchange, highlighting the strategic value of executive-level email access in modern cyber operations. The activity, which persisted for approximately five months between October 2025 and March 2026, demonstrates a disciplined…
-
Nur ein Client nötig: HTTP/2 Bomb legt Webserver in Sekunden lahm
Bei gängigen Webservern wie Nginx, Apache HTTPD und Microsoft IIS lässt sich mit wenig Aufwand innerhalb von Sekunden der Speicher fluten. First seen on golem.de Jump to article: www.golem.de/news/nur-ein-client-noetig-http-2-bomb-legt-webserver-in-sekunden-lahm-2606-209396.html
-
Researcher Drops a New VS Code Zero-Day After Losing Trust in Microsoft’s Disclosure Process
A researcher publicly released a VS Code exploit within hours, citing past disputes with Microsoft over bug handling. The security researcher Ammar Askar found a new serious zero-day in Visual Studio Code, told a contact at GitHub about it, and published a working exploit one hour later. >>Just by clicking a link, it’s possible for…
-
Kali365 PhaaS Expands to Okta, MAX Messenger Attacks
Tags: attack, cyber, infrastructure, intelligence, microsoft, monitoring, okta, phishing, russia, service, theft, threatThe Kali365 phishing-as-a-service (PhaaS) platform has significantly expanded its operational scope, moving beyond Microsoft 365 token theft to target Okta single sign-on (SSO) environments and Russia’s rapidly growing MAX Messenger platform. New threat intelligence reveals a more mature, multi-brand phishing ecosystem with centralized infrastructure, real-time token monitoring, and geographically targeted campaigns. Previously documented for abusing…
-
Microsoft Introduces Always-On AI Agent Scout for Teams, Outlook, and More
Microsoft has introduced an always-on AI agent named “Scout,” marking the debut of a new category of enterprise automation called “Autopilots.” Announced on June 2, Microsoft Scout is designed to operate continuously across Microsoft 365 services such as Teams, Outlook, OneDrive, and SharePoint, shifting AI from reactive assistants to proactive systems that execute tasks autonomously…
-
Microsoft Introduces Always-On AI Agent Scout for Teams, Outlook, and More
Microsoft has introduced an always-on AI agent named “Scout,” marking the debut of a new category of enterprise automation called “Autopilots.” Announced on June 2, Microsoft Scout is designed to operate continuously across Microsoft 365 services such as Teams, Outlook, OneDrive, and SharePoint, shifting AI from reactive assistants to proactive systems that execute tasks autonomously…
-
Microsoft Introduces Always-On AI Agent Scout for Teams, Outlook, and More
Microsoft has introduced an always-on AI agent named “Scout,” marking the debut of a new category of enterprise automation called “Autopilots.” Announced on June 2, Microsoft Scout is designed to operate continuously across Microsoft 365 services such as Teams, Outlook, OneDrive, and SharePoint, shifting AI from reactive assistants to proactive systems that execute tasks autonomously…
-
Microsoft Edge retires master password feature, adopts passkeys and biometrics
First seen on scworld.com Jump to article: www.scworld.com/brief/microsoft-edge-retires-master-password-feature-adopts-passkeys-and-biometrics
-
Mayo Clinic, Microsoft Team Up on AI for Doctors, Patients
Healthcare Sector AI Expansion Raises Questions on Governance, Privacy and Safety. Mayo Clinic and Microsoft are planning a new healthcare-specific frontier artificial intelligence model that aims to help clinicians make earlier diagnoses and deliver more personalized treatments to their patients. The clinic plans to make the new model available to patients and doctors. First seen…