Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Microsoft

20 articles

SC Media Campaigns Microsoft Jun 29

Photo-themed phishing campaign targets European and Asian hotels with Node.js implant

The campaign, which Microsoft has not attributed to a known threat actor, uses lures referencing common hotel operational issues like guest complaints, bedbu...

T1566

SC Media →

BleepingComputer CVE Microsoft Apple Linux Jun 29

Critical SimpleHelp flaw exploited to deploy new stealer malware

Hackers are exploiting a recently disclosed critical vulnerability (CVE-2026-48558) in SimpleHelp to deploy Djinn Stealer, a previously undocumented cross-pl...

1 IOC

BleepingComputer →

Security Affairs Campaigns Microsoft Jun 29

StegoAd: How 119 Fake Browser Extensions Stole Credentials and Ran Ad Fraud for Two Years

Microsoft shut down the StegoAd campaign, which used 119 malicious Edge extensions, hit 2.6M installs, and ran undetected for two years.

Security Affairs →

GBHackers Vulnerability Disclosure Microsoft Linux Jun 29

New Windows Injection Technique Hijacks Win32k Callback Dispatch to Execute Shellcode

A newly documented injection technique abuses the kernel-to-user callback dispatch path used by the Windows graphical subsystem (win32k.sys) to achieve remot...

T1190

GBHackers →

The Hacker News Campaigns Microsoft Jun 29

Microsoft Removes 119 Edge Extensions That Hid Malware in Images and Fonts

Microsoft has shut down a long-running malicious extension operation on the Edge Add-ons store that hid its payloads inside ordinary image and font files, th...

The Hacker News →

GBHackers CVE Microsoft Jun 29

Microsoft 365 Apps RCE Vulnerability Lets Attackers Execute Code via Malicious Excel Files

A newly disclosed remote code execution (RCE) vulnerability in Microsoft 365 Apps is raising concerns in enterprise environments. Attackers can exploit malic...

T1190 1 IOC

GBHackers →

The Hacker News Malware Microsoft Apple Linux Jun 29

Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer

Cybersecurity researchers have uncovered two hijacked npm packages and a cluster of Go packages that are designed to deploy a Python-based information steale...

The Hacker News →

CrowdStrike Blog General Microsoft Google CrowdStrike Jun 29

Falcon Cloud Security June 2026 Release: Updates for Azure and Google Cloud

CrowdStrike Blog →

Security Affairs Campaigns Microsoft Intel Jun 27

Hospitality Sector Hit by Phishing Campaign Using Fake Guest Complaint Emails

Microsoft warns of a phishing campaign targeting the hospitality sector with fake guest emails that install TonRAT using resilient persistence. Microsoft Thr...

T1566

Security Affairs →

SC Media TTPs Microsoft Jun 26

Turla group deploys new STOCKSTAY backdoor against Ukraine and Italy

STOCKSTAY, written in .NET and utilizing the Windows Forms framework, communicates with its command-and-control (C2) server via a secure WebSocket connection.

SC Media →

The Hacker News Campaigns Microsoft Jun 26

Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js Implant

An active phishing campaign has been targeting hotel and other hospitality organizations across Europe and Asia since April 2026, using photo-themed ZIP file...

T1566

The Hacker News →

Help Net Security Campaigns Microsoft Oracle Jun 26

Mirage2FA phishing kit uses HTML smuggling to steal Microsoft 365 credentials

Mirage2FA, a phishing kit that combines short-lived HTML smuggling with obfuscated JavaScript loaders to deliver fake Microsoft 365 login pages and steal cre...

T1566

Help Net Security →

The Hacker News Campaigns Microsoft Google Intel Jun 26

Google Details Turla's New STOCKSTAY Backdoor Used in Ukraine Espionage Attacks

The Russian state-sponsored threat actor known as Turla has been attributed to a previously undocumented .NET backdoor called STOCKSTAY that has been deploye...

The Hacker News →

Help Net Security General Microsoft Jun 26

Microsoft gives Windows 10 users an unexpected extra year of free security updates

Microsoft has given Windows 10 users another year of free security updates, extending its consumer Extended Security Updates (ESU) program until October 12, ...

Help Net Security →

GBHackers General Microsoft Jun 26

Windows Secure Boot Certificate Expiry Exposes Billions of PCs to Bootkit and Firmware Security Risks

Microsoft’s long-planned Secure Boot certificate rollover has reached a critical milestone, impacting more than just routine updates. The Microsoft Corporati...

GBHackers →

Microsoft Security Blog Campaigns Microsoft Intel Jun 25

Photo ZIP campaign targeting hospitality industry delivers Node.js implant for persistent access

Microsoft Threat Intelligence identified an active multi-stage intrusion campaign targeting hospitality organizations in Europe and Asia. The campaign uses p...

Microsoft Security Blog →

SC Media General Microsoft Jun 25

Microsoft extends free Windows 10 security updates for consumers

The extension provides users with more time to transition to a new Windows 11 PC while continuing to receive critical security updates.

SC Media →

BleepingComputer General Microsoft Jun 25

Microsoft quietly extends free Windows 10 ESU support to October 2027

Microsoft has quietly extended its free Windows 10 Extended Security Updates (ESU) program for consumers by an additional year, allowing enrolled devices to ...

BleepingComputer →

Microsoft Security Blog General Microsoft Jun 25

Microsoft a Leader in The Forrester Wave™ for Endpoint Management Platforms

Microsoft named a Leader in the Forrester Wave™: Endpoint Management Platforms, Q2 2026, with the highest scores in the current offering and strategy categor...

Microsoft Security Blog →

Help Net Security General Microsoft Amazon Jun 25

ControlMonkey connects backup visibility with cloud recovery readiness

ControlMonkey announced its Data Backup Correlation, a new capability that extends its Cyber Resilience Platform by connecting data backup posture with cloud...

Help Net Security →

«Previous page 1 ... 6 7 8 9 10 ... 44 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA