Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Microsoft

20 articles

BleepingComputer Malware Microsoft Jun 16

GhostTree Attack Abused Recursive Windows Junctions to Hide Malware

GhostTree uses recursive NTFS junctions to generate vast numbers of valid Windows file paths. Varonis explains how the technique could cause Microsoft Defend...

BleepingComputer →

GBHackers Ransomware Microsoft Jun 16

Microsoft Teams Relay Abused by Hackers to Hide Malicious Traffic

Microsoft Teams’ trusted infrastructure has been exploited by threat actors to secretly route malicious traffic, leading to a highly stealthy ransomware camp...

GBHackers →

Infosecurity Magazine Ransomware Microsoft Jun 16

DragonForce Ransomware Exploited Microsoft Teams to Hide in Attack Against Major Company

Command and control traffic exploited a Teams visitor token to make malicious activity look legitimate to defenders

T1071

Infosecurity Magazine →

BleepingComputer Ransomware Microsoft Jun 16

Ransomware gang abuses Microsoft Teams relays to hide malicious traffic

DragonForce ransomware used a custom malware named 'Backdoor.Turn' to hide command-and-control traffic inside Microsoft Teams relay infrastructure.

BleepingComputer →

The Hacker News Malware Microsoft Linux Jun 16

China-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based Stealth

Cybersecurity researchers have flagged two previously undocumented Windows variants of what was believed to be a Linux-only backdoor called SprySOCKS. "The W...

The Hacker News →

GBHackers Campaigns Microsoft Jun 16

Hackers Abuse Microsoft OAuth Device Code Flow to Take Over Microsoft 365 Accounts

An active campaign in which attackers are abusing Microsoft’s OAuth 2.0 Device Authorization Grant (device code) flow to take over Microsoft 365 accounts.

GBHackers →

BleepingComputer Malware Microsoft Linux Jun 16

Windows version of SprySOCKS Linux malware used to attack govt orgs

Windows variants for the SprySOCKS Linux malware have been used in attacks targeting government organizations in at least four countries. [.

BleepingComputer →

WeLiveSecurity Malware Microsoft Linux Jun 16

FishMonger’s arsenal upgraded: SprySOCKS for Windows

ESET researchers have discovered SprySOCKS for Windows, FishMonger’s backdoor weaponizing a kernel driver for advanced stealthiness

WeLiveSecurity →

The Hacker News Campaigns Microsoft Jun 16

Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware

The North Korean state-sponsored hacking group known as ScarCruft (aka APT37) has been observed using spear-phishing messages impersonating Microsoft Account...

T1566

The Hacker News →

SANS ISC General Microsoft Oracle F5 Jun 16

From a VHDX File to a Remcos RAT, (Tue, Jun 16th)

Yesterday, a reader reported to us a malicious ZIP archive (SHA256: a0104921a2d37ab87482ac9a9f5c3713479c118846c3e999178e75b81620c094[1]).

1 IOC

SANS ISC →

Help Net Security General Microsoft GitHub Jun 16

GitHub releases an open dataset for multilingual developer content

Developers coordinate code across README files, issue threads, and pull request discussions. Much of that exchange happens in English, and a large share happ...

Help Net Security →

GBHackers General Microsoft Jun 16

Microsoft Website Displays Security Warning After Certificate Expiry

Microsoft has triggered widespread browser security warnings after allowing the TLS certificate for a critical Microsoft 365 connectivity testing domain to e...

1 IOC

GBHackers →

GBHackers CVE Microsoft Jun 16

Microsoft 365 Copilot Vulnerability Exposes Sensitive Data Through One-Click Attack

Microsoft 365 Copilot has been found vulnerable to a critical one-click data exfiltration attack chain dubbed “SearchLeak,” exposing sensitive enterprise dat...

T1041 1 IOC

GBHackers →

SC Media CVE Microsoft Jun 15

SearchLeak vulnerability allows data theft from Microsoft 365 Copilot Enterprise

The SearchLeak vulnerability, identified as CVE-2026-42824, is a three-stage attack chain developed by Varonis researchers.

T1041 1 IOC

SC Media →

Microsoft Security Blog General Microsoft Jun 15

Microsoft Defender email security benchmarking: Key insights from one year of data

See how Microsoft Defender performed in one year of real-world email security benchmarking against SEG and ICES vendors. The post Microsoft Defender email se...

Microsoft Security Blog →

The Hacker News Phishing Microsoft Jun 15

One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes

A single click on a trusted Microsoft link could have let an attacker pull emails, calendar details, and indexed files out of Microsoft 365 Copilot Enterpris...

T1566 T1041 T1598

The Hacker News →

Help Net Security General Microsoft Jun 15

Trust3 AI’s AgentDOS monitors AI agent activity, data access, and token consumption

Trust3 AI has announced AgentDOS, an enterprise control plane that provides visibility into AI agents, including real-time token consumption monitoring acros...

Help Net Security →

BleepingComputer Vulnerability Disclosure Microsoft Jun 15

New attack turned Microsoft 365 Copilot into 1-click data theft tool

A critical vulnerability chain dubbed SearchLeak in Microsoft 365 Copilot Enterprise could allow attackers to steal sensitive data from a target's mailbox, O...

T1041

BleepingComputer →

GBHackers General Microsoft Jun 15

Windows 11 Update Causes System Freezes, Triggers BitLocker Recovery, and Breaks OneDrive

Windows 11 cumulative update KB5094126, released on June 9, 2026, for builds 26200.8655 and 26100.

GBHackers →

Help Net Security General Microsoft Jun 15

Microsoft’s workplace check-in via Wi-Fi tracks who’s in the office, and not everyone’s happy

Microsoft is rolling out workplace check-in via Wi-Fi for Teams and Microsoft Places. Connect to your office network and your in-office presence updates auto...

Help Net Security →

«Previous page 1 ... 12 13 14 15 16 ... 44 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA