Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Microsoft Security Blog

20 articles

Microsoft Security Blog Vulnerability Disclosure Microsoft Jun 17

Beyond the benchmark: Advancing security at AI speed 

Read how Microsoft Security has advanced its agentic vulnerability detection system, codename MDASH, integrating into real-world workflows across Windows, Az...

Microsoft Security Blog →

Microsoft Security Blog General Microsoft Jun 17

​​Forrester names Microsoft a Leader in the 2026 Extended Detection and Response Platforms Wave™ report

Microsoft has been named a Leader in The Forrester Wave™: Extended Detection and Response Platforms, Q2 2026. The post ​​Forrester names Microsoft a Leader i...

Microsoft Security Blog →

Microsoft Security Blog General Microsoft Jun 17

AI is accelerating cyberattacks—here’s how to stay ahead

See how Microsoft unifies identity and security signals to help teams prevent, detect, and respond to AI-accelerated attacks faster. The post AI is accelerat...

Microsoft Security Blog →

Microsoft Security Blog General Microsoft Jun 15

Microsoft Defender email security benchmarking: Key insights from one year of data

See how Microsoft Defender performed in one year of real-world email security benchmarking against SEG and ICES vendors. The post Microsoft Defender email se...

Microsoft Security Blog →

Microsoft Security Blog General Microsoft Jun 10

Turn specs into evals for any agent with ASSERT

Adaptive Spec-driven Scoring for Evaluation and Regression Testing (ASSERT) is an open-source framework for converting natural language behavior requirements...

Microsoft Security Blog →

Microsoft Security Blog General Microsoft Jun 9

Reconstructing AI activity in investigations 

Learn how to investigate AI activity in Microsoft 365 Copilot and Azure AI services using a structured, telemetry-driven approach. This playbook helps securi...

T1592

Microsoft Security Blog →

Microsoft Security Blog General Microsoft Jun 8

AI brands as bait: How threat actors are using the AI hype in social engineering

As threat actors operationalize AI to accelerate attacks, they are also leveraging the wider global interest around AI itself as a social engineering lure. T...

T1204

Microsoft Security Blog →

Microsoft Security Blog General Microsoft GitHub Intel Jun 5

Securing CI/CD in an agentic world: Claude Code Github action case

Microsoft Threat Intelligence identified a prompt injection pathway in Claude Code GitHub Action that allowed access to workflow secrets under specific condi...

Microsoft Security Blog →

Microsoft Security Blog Supply Chain Microsoft Jun 4

Updating the taxonomy of failure modes in agentic AI systems: What a year of red teaming taught us 

A surge in real-world attacks against agentic AI systems is reshaping how we think about risk. Based on 12 months of red teaming, this update introduces seve...

T1195

Microsoft Security Blog →

Microsoft Security Blog Campaigns Red Hat GitHub Jun 3

Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign

A large-scale npm supply chain attack compromised over 90 versions of @redhat-cloud-services packages, silently infecting CI/CD environments and developer sy...

T1195

Microsoft Security Blog →

Microsoft Security Blog General Microsoft Jun 2

Microsoft Build 2026: Securing code, agents, and models across the development lifecycle

Discover how Microsoft enables fast, secure AI development with MDASH and new security capabilities. The post Microsoft Build 2026: Securing code, agents, an...

Microsoft Security Blog →

Microsoft Security Blog Campaigns Microsoft May 30

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details...

T1195 T1592

Microsoft Security Blog →

Microsoft Security Blog General Microsoft May 29

Microsoft is named a Leader in the 2026 Gartner® Magic Quadrant™ for Endpoint Protection

Microsoft is named a Leader in the 2026 Gartner® Magic Quadrant™ for Endpoint Protection. The post Microsoft is named a Leader in the 2026 Gartner® Magic Qua...

Microsoft Security Blog →

Microsoft Security Blog Campaigns Microsoft May 29

Typosquatted npm packages used to steal cloud and CI/CD secrets

The Mini Shai-Hulud campaign used malicious npm packages to target cloud and CI/CD credentials across developer environments. This report details the attack ...

Microsoft Security Blog →

Microsoft Security Blog Ransomware Microsoft Intel May 28

The Gentlemen ransomware: Dissecting a self-propagating Go encryptor

Microsoft Threat Intelligence presents a comprehensive analysis of The Gentlemen, a Go-based ransomware deployed by affiliates of Storm-2697 that combines pe...

T1021

Microsoft Security Blog →

Microsoft Security Blog Campaigns Microsoft May 26

From poisoned search results to GPU mining: A cryptojacking campaign abusing ScreenConnect and Microsoft .NET utilities

Microsoft exposes a cryptojacking campaign using SEO poisoning and ScreenConnect to target high-performance PCs, with malicious sites also surfaced through A...

Microsoft Security Blog →

Microsoft Security Blog General Microsoft May 22

Microsoft recognized as a Leader in The Forrester Wave™ for Workforce Identity Security Platforms

Microsoft has been recognized as a Leader in The Forrester Wave™: Workforce Identity Security Platforms, Q2 2026, receiving the highest scores in both the cu...

Microsoft Security Blog →

Microsoft Security Blog TTPs Microsoft Atlassian F5 Linux May 22

From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5 and Confluence

A multi-stage attack on Linux devices began with an exposed F5 BIG-IP edge appliance and pivoted to an internal Confluence server for credential theft and id...

T1078 T1021

Microsoft Security Blog →

Microsoft Security Blog General Microsoft May 22

Microsoft Security success stories: How St. Luke’s and ManpowerGroup are securing AI foundations

How Frontier firms secure AI at scale: read how Microsoft customers embed governance, identity, and cloud security to make protection an enabler of AI growth...

Microsoft Security Blog →

Microsoft Security Blog General Microsoft May 21

What’s new in Microsoft Security: May 2026

Microsoft Security’s latest updates extend visibility, control, and protection across expanding ecosystems as organizations accelerate AI adoption. The post ...

Microsoft Security Blog →

«Previous page 1 2 3 4 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA