Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Microsoft

20 articles

The Hacker News Supply Chain Microsoft GitHub 1d ago

npm 12 Disables Install Scripts by Default to Reduce Supply Chain Risk

GitHub has officially announced the release of npm version 12 with install scripts disabled by default, along with deprecating granular access tokens (GATs) ...

The Hacker News →

The Hacker News General Microsoft 1d ago

ThreatsDay: Cloud Bucket Hijacking, Windows LPE Chain, Global Fraud Bust + 17 More Stories

Most security mess starts as admin work. A link gets clicked.

T1598

The Hacker News →

Microsoft Security Blog Ransomware Microsoft 1d ago

GigaWiper: Anatomy of a destructive backdoor assembled from multiple malware

GigaWiper is a destructive backdoor that combines multiple wiping and ransomware-like capabilities into a single operational platform. This blog analyzes how...

Microsoft Security Blog →

BleepingComputer Campaigns Microsoft 1d ago

New Forg365 phishing platform uses AI to target Microsoft 365 accounts

A new phishing-as-a-service (PhaaS) operation called Forg365 focuses on stealing Microsoft 365 accounts by combining adversary-in-the-middle (AiTM) and devic...

T1566 T1557

BleepingComputer →

Help Net Security General Microsoft 1d ago

Extortion crew hijacks Microsoft 365 accounts via fake passkey setup

The Pink cyber extortion crew is tricking employees into giving them access to their Microsoft 365 accounts by faking Entra passkey enrollment requests. The ...

Help Net Security →

SC Media Zero-Day Microsoft 1d ago

Microsoft releases patch for Defender zero-day vulnerability RoguePlanet

The vulnerability, tracked as CVE-2026-50656, was revealed by a security researcher using the handle "Nightmare Eclipse.

1 IOC

SC Media →

Help Net Security CVE Microsoft 1d ago

Microsoft releases fix for RoguePlanet Defender flaw (CVE-2026-50656)

Microsoft has finally released a security update for its Microsoft Malware Protection Engine, which fixes CVE-2026-50656, the Windows Defender local privileg...

T1548 T1068 1 IOC

Help Net Security →

BleepingComputer General Microsoft 1d ago

Microsoft to retire the OWA Light client in Exchange Server

Microsoft has announced plans to disable Outlook Web Access (OWA) Light, the lightweight version of the Outlook Web App email client, in a future Exchange Se...

BleepingComputer →

SecurityWeek CVE Microsoft 1d ago

Microsoft Patches Defender ‘RoguePlanet’ Vulnerability

The privilege escalation vulnerability tracked as CVE-2026-50656 has been patched with a Microsoft Malware Protection Engine update. The post Microsoft Patch...

T1548 1 IOC

SecurityWeek →

Security Affairs CVE Microsoft 1d ago

Microsoft fixed Defender flaw RoguePlanet (CVE-2026-50656)

Microsoft fixed RoguePlanet (CVE-2026-50656), a Defender flaw allowing local attackers to gain higher privileges through the Malware Protection Engine. Micro...

1 IOC

Security Affairs →

GBHackers Vulnerability Disclosure Microsoft Amazon 1d ago

Foxit Patches Multiple Use-After-Free Flaws Leading to Remote Code Execution

Foxit has released critical security updates to address multiple use-after-free vulnerabilities that could lead to remote code execution (RCE) in its widely ...

T1190

GBHackers →

GBHackers Campaigns Microsoft 1d ago

Microsoft Entra Passkey Enrollment Abused in Operator-Controlled Vishing Campaign

A focused vishing campaign that weaponizes Microsoft Entra passkey enrollment as a social-engineering vector to enable account takeover and downstream data e...

GBHackers →

GBHackers Vulnerability Disclosure Microsoft Google Apple Amazon Linux 1d ago

Google Chrome Update Patches 27 Security Vulnerabilities Including Critical Use-After-Free Flaws

Google has released a critical security update for Chrome, upgrading the Stable channel to version 150.0.

T1190

GBHackers →

The Hacker News CVE Microsoft 1d ago

Microsoft Patches RoguePlanet Defender Flaw That Can Grant SYSTEM Privileges

Microsoft has released security updates for a Defender vulnerability known as RoguePlanet, nearly a month after details of the flaw became public. The vulner...

T1548 T1598 1 IOC

The Hacker News →

GBHackers Campaigns Microsoft 1d ago

SNOW Malware Ecosystem Uses Teams Phishing, WebSocket Tunnels, and Browser Extensions

Threat actors are increasingly chaining classic phishing with collaboration platforms and covert tunneling to create highly believable intrusion paths. A rec...

T1566

GBHackers →

BleepingComputer Zero-Day Microsoft 1d ago

Microsoft patches RoguePlanet Defender zero-day vulnerability

Microsoft has released a security patch to address a Defender zero-day vulnerability known as "RoguePlanet," disclosed after the June 2026 Patch Tuesday. [.

BleepingComputer →

Security Affairs Data Breach Microsoft 2d ago

A Hacker Claims 35 GB of Accenture Source Code. The Company discloses the data breach

Accenture confirmed a breach after a hacker claimed to steal 35 GB of source code, keys, and Azure credentials now offered for sale. A threat actor using the...

Security Affairs →

The Hacker News General Microsoft Sophos 2d ago

AI Coding Agents Found Triggering Endpoint Security Rules Built to Catch Attackers

Sophos looked at a week of its own endpoint data and found that AI coding agents such as Claude Code, Cursor, and OpenAI Codex are setting off detection rule...

The Hacker News →

Microsoft Security Blog General Microsoft 2d ago

Protecting Microsoft at AI speed: How SFI proactively hardens our cloud  

At Microsoft we encompass these security requirements, along with threat knowledge, and operational frameworks in our Secure Future Initiative (SFI), to guid...

Microsoft Security Blog →

BleepingComputer Campaigns Microsoft 2d ago

Entra passkey enrollment vishing targets Microsoft 365 users

A threat actor has been targeting organizations across multiple sectors with voice-based fake security requests that ask Microsoft 365 users to enroll a new ...

BleepingComputer →

«Previous page 1 2 3 4 ... 44 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA