Microsoft

Phishing actors exploit complex routing and misconfigurations to spoof domains

Threat actors are exploiting complex routing scenarios and misconfigured spoof protections to send spoofed phishing emails, ...
Dark Reading

Attackers Exploit Microsoft Security-Bypass Zero-Day Bugs

Microsoft's scheduled Patch Tuesday security update for February includes fixes for two zero-day security vulnerabilities under active attack, plus 71 other flaws across a wide range of its products.
CRN

Microsoft: Midnight Blizzard Attempting To Exploit Customer ‘Secrets’

The tech giant says the information was ‘shared between customers and Microsoft in email.’ The Russian state-sponsored threat actor known as Midnight Blizzard has been trying to exploit information ...
Forbes

Windows Security Function Bypassed By New 0-Day Threat, Microsoft Says

Patch Tuesday has passed, and we are now left with what is colloquially known in cybersecurity circles as Exploit Wednesday. This month, that could be more problematic for Windows users than usual as ...
Forbes

Emergency Microsoft Security Warning Confirmed — Act Now, CISA Says

Update, August 10, 2025: This story, originally published on August 7, has been updated with additional information following a demonstration of the shared service principal exploit at the Black Hat ...
Hosted on MSN

Microsoft Copilot Vulnerability Exposes Users to Zero-Click Cyber Threats

In an era where cloud-based solutions and artificial intelligence are the cornerstones of digital transformation, security vulnerabilities in these platforms can have far-reaching impacts. One such ...
InfoWorld

Windows exploit leaked — by Microsoft?

Proof-of-concept exploit created by Microsoft has apparently leaked to the Internet. Possible sources of the leak: Microsoft security partners or an employee An attack exploiting a recently patched ...