Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Microsoft

20 articles

GBHackers Malware Microsoft Jun 22

Malicious npm Package Masquerades as PostCSS Utility to Deliver PowerShell Downloader

A malicious npm package, postcss-minify-selector-parser, has been discovered masquerading as a benign PostCSS utility and delivering a multi-stage Windows re...

GBHackers →

Infosecurity Magazine Campaigns Microsoft SAP Jun 22

Microsoft Attributes Mastra AI Supply Chain Attack to North Korea

North Korean threat actor Sapphire Sleet has been linked to a supply chain attack targeting Mastra, according to Microsoft security researchers

T1195

Infosecurity Magazine →

GBHackers General Microsoft Jun 22

Microsoft Confirms Windows 11 26H2 Upgrade via Enablement Package for Faster Deployment

Microsoft has announced that the upcoming Windows 11 version 26H2 will be delivered using an enablement package model. This approach aligns with their goal o...

GBHackers →

GBHackers Campaigns Microsoft Google Jun 22

OXLOADER Uses MBA Obfuscation and Control-Flow Flattening to Bypass Static Detection

A previously undocumented Windows loader, tracked as OXLOADER, that combines sophisticated obfuscation and unconventional staging to evade static detection a...

T1027 T1189

GBHackers →

Help Net Security General Microsoft Google Apple Jun 22

Product showcase: Avira Security for iOS blends security, privacy, and device optimization

Avira Mobile Security for iOS combines security, privacy, and device optimization tools in a single application. The app is also available for Android, macOS...

Help Net Security →

BleepingComputer Supply Chain Microsoft SAP Jun 20

Microsoft links Mastra AI supply chain attack to North Korean hackers

Microsoft has attributed a recent Mastra AI supply chain attack that compromised more than 140 npm packages to the North Korean hacking group Sapphire Sleet,...

T1195

BleepingComputer →

GBHackers Vulnerability Disclosure Microsoft Jun 20

AutoJack Exploit Chain Hits Microsoft AutoGen Studio With Zero-Click RCE Attack

A critical exploit chain dubbed AutoJack that allows a single malicious web page to hijack Microsoft’s AutoGen Studio browsing agent and silently execute arb...

GBHackers →

Rapid7 Blog Vulnerability Disclosure Microsoft Rapid7 Jun 19

Weekly Metasploit Update: NTLM Relay Priv Esc, MCP Server Integration, Paperclip AI RCE Chain, and more

This week's release includes five new modules, including a full unauthenticated RCE chain for Paperclip AI and a VS Code extension persistence technique.

T1548

Rapid7 Blog →

The Hacker News Vulnerability Disclosure Microsoft Oracle Jun 19

AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution

Microsoft researchers have detailed an exploit chain, named AutoJack, that turns an AI browsing agent into a delivery vehicle for remote code execution. Stee...

T1190

The Hacker News →

CSO Online General Microsoft Jun 19

Microsoft broke some OLE automations with latest Windows update

Microsoft Office users may find that some of their applications are failing to open when called on by third-party applications. It’s an issue that has emerge...

CSO Online →

The Hacker News Data Breach Microsoft Jun 19

From Assistive to Agentic: The AI Shift That's Redefining Threat Management

Introduction The average enterprise security team has 40 or more security tools, giving a lot of visibility into internal telemetry and asset data. But often...

The Hacker News →

BleepingComputer General Microsoft Jun 19

Microsoft: June 2026 Windows updates break Recycle Bin prompts

Microsoft has confirmed a confusing Windows bug that causes different filenames to appear in the confirmation dialog when deleting a file from the Recycle Bi...

BleepingComputer →

CSO Online Vulnerability Disclosure Microsoft Jun 19

Microsoft says web-enabled AI agents can trigger host-level RCE

Microsoft is warning of a novel remote code execution (RCE) path possible through web-enabled AI agents, demonstrating the technique against AutoGen Studio, ...

T1190 T1598

CSO Online →

Help Net Security General Microsoft Apple Jun 19

BlackFog brings shadow AI visibility to macOS endpoints with ADX Vision

BlackFog has announced the general availability of ADX Vision for macOS, extending its shadow AI detection, governance, and prevention platform to Apple endp...

Help Net Security →

CSO Online General Microsoft Jun 19

M365 Copilot SearchLeak: Your prompt injection attack surface just got bigger

A recent proof-of-concept attack against Microsoft’s M365 Copilot Enterprise highlights what could be a much broader prompt injection threat based on a commo...

CSO Online →

GBHackers Vulnerability Disclosure Microsoft Jun 19

New Crypto Clipper Uses Windows Script Host and ActiveXObject for Remote Code Execution

A novel Windows-based cryptocurrency clipper that has been active since February 2026 and leverages Windows Script Host (WScript) and ActiveXObject calls to ...

T1190 T1041 T1598

GBHackers →

Elastic Security Labs General Microsoft Jun 19

Azure AD Graph Activity Logs: Ingestion and threat detection to close the visibility gap

Azure AD Graph Activity Logs land in Elastic with full ECS parsing. Detect ROADrecon and AADInternals enumeration with ready-to-use detection rules.

T1592

Elastic Security Labs →

HackRead General Microsoft Apple Jun 18

MacBook Neo vs Windows Laptops for Cybersecurity Tasks

There is no one-size-fits-all cybersecurity laptop. We’ll examine real-world work scenarios, tool compatibility, and trade-offs that impact a security profes...

HackRead →

Security Affairs Campaigns Microsoft Intel Jun 18

Tor-Based Clipper Malware Targets Wallet Seed Phrases

USB .lnk malware steals crypto via clipboard hijack, replaces wallet addresses, steals seed phrases, and screenshots.

Security Affairs →

Microsoft Security Blog General Microsoft Jun 18

New Forrester study shows customers who unified with Microsoft Security benefited from 124% ROI

New Forrester Total Economic Impact™ study shows Microsoft Security consolidation delivers ROI, lowers risk, and prepares organizations to secure AI. The pos...

Microsoft Security Blog →

«Previous page 1 ... 9 10 11 12 13 ... 44 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA