Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Microsoft Security Blog

20 articles

Microsoft Security Blog Malware Microsoft Amazon GitHub Linux Kubernetes May 20

Mini Shai Hulud: Compromised @antv npm packages enable CI/CD credential theft

Compromised @antv npm packages deploy the Mini Shai-Hulud payload to steal CI/CD secrets from Linux-based automation environments. The malware executes durin...

T1078

Microsoft Security Blog →

Microsoft Security Blog General Microsoft May 20

Securing the gaming culture of cultures

Read about the unique challenges and rewards of securing gaming platforms and how to better protect gaming communities. The post Securing the gaming culture ...

Microsoft Security Blog →

Microsoft Security Blog General Microsoft May 20

Introducing RAMPART and Clarity: Open source tools to bring safety into Agent development workflow

The AI systems shipping inside enterprises today are fundamentally different from the ones we were building even two years ago, because they have moved well ...

T1598

Microsoft Security Blog →

Microsoft Security Blog Ransomware Microsoft May 19

Exposing Fox Tempest: A malware-signing service operation

Fox Tempest is a financially motivated threat actor operating a malware‑signing‑as‑a‑service (MSaaS) used by other cybercriminals, including Vanilla Tempest ...

Microsoft Security Blog →

Microsoft Security Blog Data Breach Microsoft May 18

How Storm-2949 turned a compromised identity into a cloud-wide breach

Storm-2949 turned stolen credentials into a cloud-wide breach, moving from identity compromise to large-scale data theft without using malware. This incident...

T1078 T1041

Microsoft Security Blog →

Microsoft Security Blog General Microsoft May 18

How to better protect your growing business in an AI-powered world

AI is reshaping work and introducing new risks. See how built-in security helps keep your growing business running, protect customer trust, and support growth.

Microsoft Security Blog →

Microsoft Security Blog General Microsoft May 14

Defense in depth for autonomous AI agents

As AI agents gain autonomy, defense in depth must evolve, with application-layer design, identity, and human oversight at the center. The post Defense in dep...

Microsoft Security Blog →

Microsoft Security Blog Campaigns Microsoft May 14

Kazuar: Anatomy of a nation-state botnet

Kazuar, a sophisticated malware family attributed to the Russian state actor Secret Blizzard, has been under constant development for years and continues to ...

Microsoft Security Blog →

Microsoft Security Blog Vulnerability Disclosure Microsoft Kubernetes May 14

When configuration becomes a vulnerability: Exploitable misconfigurations in AI apps

Exposed UIs, weak authentication, and risky defaults could turn cloud-native AI apps on Kubernetes into potential targets by threat actors. Learn how exploit...

T1598

Microsoft Security Blog →

Microsoft Security Blog General Microsoft May 12

Accelerating detection engineering using AI-assisted synthetic attack logs generation

What if you could generate realistic attack telemetry on demand? Explore research methods that translate attacker behaviors (TTPs) into synthetic logs that c...

Microsoft Security Blog →

Microsoft Security Blog General Microsoft May 12

Defense at AI speed: Microsoft’s new multi-model agentic security system finds 16 new vulnerabilities

Today Microsoft is announcing a major step forward in AI-powered cyber defense: a new multi-model agentic scanning harness (codenamed MDASH). The post Defens...

Microsoft Security Blog →

Microsoft Security Blog General Microsoft May 12

Defense at AI speed: Microsoft’s new multi-model agentic security system tops leading industry benchmark

Today Microsoft is announcing a major step forward in AI-powered cyber defense: a new multi-model agentic scanning harness (codenamed MDASH). The post Defens...

Microsoft Security Blog →

Microsoft Security Blog DDoS Microsoft May 12

Defending consumer web properties against modern DDoS attacks

Read how to protect consumer websites and defend against modern DDoS attacks with layered security, resilient architecture, and graceful service degradation....

T1498

Microsoft Security Blog →

Microsoft Security Blog Malware Microsoft May 12

Undermining the trust boundary: Investigating a stealthy intrusion through third-party compromise

Microsoft Incident Response investigated an attack operated through legitimate and trusted administrative mechanisms to blend seamlessly into routine operati...

Microsoft Security Blog →

Microsoft Security Blog Vulnerability Disclosure Microsoft Linux Docker May 8

Active attack: Dirty Frag Linux vulnerability expands post-compromise risk

Dirty Frag is a newly disclosed Linux local privilege escalation vulnerability affecting kernel networking and memory-fragment handling components including ...

T1190 T1548 T1068

Microsoft Security Blog →

Microsoft Security Blog Vulnerability Disclosure Microsoft May 7

When prompts become shells: RCE vulnerabilities in AI agent frameworks

New research exposes how prompt injection in AI agent frameworks can lead to remote code execution. Learn how these vulnerabilities work, what’s impacted, an...

T1190 T1598

Microsoft Security Blog →

Microsoft Security Blog Phishing Microsoft May 7

World Passkey Day: Advancing passwordless authentication

This World Passkey Day, read how Microsoft is advancing passkey adoption to replace passwords, cut phishing risk, and deliver simpler, more secure sign-ins. ...

T1566

Microsoft Security Blog →

Microsoft Security Blog General Microsoft May 6

​​Microsoft named an overall leader in KuppingerCole Analyst’s 2026 Emerging AI Security Operations Center (SOC) report ​​

Microsoft is excited to be named an Overall Leader, and the Market Leader in the Kuppinger Cole Analyst’s 2026 Emerging AI Security Operations Center (SOC) r...

Microsoft Security Blog →

Microsoft Security Blog Campaigns Microsoft Apple May 6

ClickFix campaign uses fake macOS utilities lures to deliver infostealers

Threat actors are targeting macOS users with fake utility fixes that trick them into running malicious Terminal commands. This campaign evades traditional de...

Microsoft Security Blog →

Microsoft Security Blog Campaigns Microsoft May 4

Breaking the code: Multi-stage ‘code of conduct’ phishing campaign leads to AiTM token compromise

Microsoft Defender Research observed a large-scale credential theft campaign that exemplifies this trend, using code of conduct-themed lures, a multi-step at...

T1566 T1078 T1557

Microsoft Security Blog →

«Previous page 1 2 3 4 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA