Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Microsoft

20 articles

CSO Online Campaigns Microsoft Google Apple SentinelOne May 20

SHub Reaper impersonates Apple, Google, and Microsoft in one MacOS attack chain

A newly disclosed macOS infostealer campaign is exploiting user trust in some of the biggest names in tech to slip past defenses. Researchers at SentinelOne ...

T1204

CSO Online →

GBHackers TTPs Microsoft May 20

GraphWorm Malware Abuses Microsoft OneDrive for Stealthy C2 Operations

A new activity from Webworm, a China-aligned advanced persistent threat (APT) group, revealing a significant evolution in its cyber espionage toolkit during ...

GBHackers →

GBHackers Ransomware Microsoft Intel May 20

Fox Tempest Linked to Malware-Signing Service Abusing Microsoft Artifact Signing

Fox Tempest, a financially motivated threat actor, has been linked to a large-scale malware-signing-as-a-service (MSaaS) operation that abused Microsoft’s Ar...

GBHackers →

GBHackers Campaigns Microsoft May 20

Fake Tax Assessment Pages Spread Windows Malware

Hackers are actively targeting Windows users with fake Indian Income Tax assessment pages in a campaign tracked as TAX#TRIDENT. The campaign begins with frau...

GBHackers →

Help Net Security Data Breach Microsoft GitHub May 20

TeamPCP breached GitHub’s internal codebase via poisoned VS Code extension

Following TeamPCP’s claim that they’ve breached GitHub’s own private code repositories, the Microsoft-owned company launched an investigation and confirmed t...

T1041

Help Net Security →

CSO Online Vulnerability Disclosure Microsoft Google Amazon GitHub May 20

Why some security fixes never reach your vulnerability dashboard

On April 22, for roughly 90 minutes, a malicious version of Bitwarden CLI appeared on npm. Version 2026.

CSO Online →

Help Net Security CVE Microsoft May 20

Microsoft provides mitigation for “YellowKey” BitLocker bypass flaw (CVE-2026-45585)

Microsoft is working on a fix for CVE-2026-45585 (aka “Yellowkey”), a vulnerability that can be used by attackers to bypass protections offered by BitLocker,...

1 IOC

Help Net Security →

The Hacker News Zero-Day Microsoft May 20

Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 Exploit

Microsoft on Tuesday released a mitigation for a BitLocker bypass vulnerability named YellowKey following its public disclosure last week. The zero-day flaw,...

1 IOC

The Hacker News →

BleepingComputer Zero-Day Microsoft May 20

Microsoft shares mitigation for YellowKey Windows zero-day

Microsoft has shared mitigations for YellowKey, a recently disclosed Windows BitLocker zero-day vulnerability that grants access to protected drives. [.

BleepingComputer →

GBHackers Vulnerability Disclosure Microsoft Oracle May 20

Hackers Exploit MSHTA to Deploy LummaStealer and Amatera Malware

Hackers are increasingly abusing the legacy Microsoft HTML Application Host (MSHTA) utility to deliver commodity malware such as LummaStealer and Amatera. De...

GBHackers →

CSO Online Ransomware Microsoft May 20

Microsoft disrupts malware code-signing service used by ransomware gangs

Microsoft has disrupted the infrastructure powering the largest malware code-signing service used to help ransomware groups and other cybercriminals make mal...

CSO Online →

BleepingComputer Ransomware Microsoft May 19

Cybercrime service disrupted for abusing Microsoft platform to sign malware

Microsoft says it has disrupted a malware-signing-as-a-service (MSaaS) operation that abused the company's Artifact Signing service to generate fraudulent co...

BleepingComputer →

BleepingComputer Campaigns Microsoft May 19

Microsoft Self-Service Password Reset abused in Azure data theft attacks

A threat actor targeting Microsoft 365 and Azure production environments is stealing data in attacks that abuse legitimate applications and administration fe...

T1041

BleepingComputer →

Security Affairs Campaigns Microsoft May 19

Microsoft dismantled malware-signing network Fox Tempest

Microsoft disrupted Fox Tempest, a malware-signing-as-a-service (MSaaS) that allowed attackers to sign malware with fake trusted certificates. Microsoft said...

Security Affairs →

The Record Ransomware Microsoft May 19

Microsoft disrupts Fox Tempest malware-signing-as-a-service platform tied to ransomware gangs

The company unsealed a legal case in U.S.

The Record →

BleepingComputer General Microsoft May 19

Microsoft plans to improve Windows 11 driver quality in 2026

Microsoft plans to raise the quality bar of Windows 11 drivers, as drivers "sit at the heart of every Windows experience" and connect the OS to the "silicon,...

BleepingComputer →

BleepingComputer General Microsoft Apple May 19

Microsoft blames undismissible Teams location prompts on macOS update

Microsoft has confirmed user reports that the Teams team collaboration app is displaying non-dismissible location prompts on some macOS systems. [.

BleepingComputer →

SecurityWeek Ransomware Microsoft May 19

Microsoft Disrupts Malware-Signing Service Run by ‘Fox Tempest’ 

Fox Tempest provides a service that cybercriminals use to distribute ransomware and other malware disguised as legitimate software. The post Microsoft Disrup...

SecurityWeek →

Microsoft Security Blog Ransomware Microsoft May 19

Exposing Fox Tempest: A malware-signing service operation

Fox Tempest is a financially motivated threat actor operating a malware‑signing‑as‑a‑service (MSaaS) used by other cybercriminals, including Vanilla Tempest ...

Microsoft Security Blog →

Cyberscoop Ransomware Microsoft May 19

Microsoft disrupts cybercrime service that abused software verification systems en masse

Fox Tempest, a financially-motivated threat group, allowed ransomware operators and other cybercriminals to slip malware-laced software past security control...

Cyberscoop →

«Previous page 1 ... 28 29 30 31 32 ... 44 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA