2107 items
Unread (2107) All Dismissed
CRITICAL
CVE-2026-10580 (CVSS 9.8) — The Hippoo Mobile App for WooCommerce plugin for WordPress is vulnerable to Authentication Bypass le...
NVD CVE-2026-10580 1h ago
INFO
CISA: Hackers now exploit SolarWinds Serv-U flaw to crash servers
BleepingComputer breachesransomwaresupply-chain 1h ago
INFO
Exposed Fuel Tank Gauges Under Attack in the US
rss:darkreading breachesmalwarethreat-actors 1h ago
CRITICAL
CVE-2025-71318 (CVSS 9.8) — NetMan 204 fails to enforce authentication on its administrative pages and command endpoints. A remo...
NVD CVE-2025-71318 2h ago
CRITICAL
CVE-2025-71317 (CVSS 9.8) — NetMan 204 contains a hard-coded backdoor account with the username and password 'eurek' that grants...
NVD CVE-2025-71317 2h ago
HIGH
Microsoft shares mitigation for YellowKey Windows zero-day
BleepingComputer breachesransomwaresupply-chain +47 16d ago
INFO
Azerbaijani Energy Firm Hit by Repeated Microsoft Exchange Exploitation
The Hacker News 23d ago
INFO
Microsoft's MDASH AI System Finds 16 Windows Flaws Fixed in Patch Tuesday
The Hacker News 23d ago
HIGH
Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation
The Hacker News 22d ago
INFO
Zero-Day Exploit Against Windows BitLocker
rss:schneier 18d ago
INFO
Compromised Nx Console 18.95.0 Targeted VS Code Developers with Credential Stealer
The Hacker News 17d ago
INFO
The New Phishing Click: How OAuth Consent Bypasses MFA
The Hacker News 17d ago
INFO
Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks
SecurityWeek 17d ago
HIGH
Microsoft Disrupts Malware-Signing Service Run by ‘Fox Tempest’
SecurityWeek 17d ago
INFO
Stealer Spoofs Google, Microsoft & Apple, Then Backdoors macOS
rss:darkreading 17d ago
HIGH
Cybercrime service disrupted for abusing Microsoft platform to sign malware
BleepingComputer 16d ago
INFO
Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API
The Hacker News 16d ago
INFO
Microsoft Takes Down Malware-Signing Service Behind Ransomware Attacks
The Hacker News 16d ago
INFO
Microsoft Rolls Out Mitigations for ‘YellowKey’ BitLocker Bypass
SecurityWeek 16d ago
INFO
Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During Development
The Hacker News 16d ago
INFO
Microsoft warns of new Defender zero-days exploited in attacks
BleepingComputer 15d ago
INFO
Microsoft Patches Exploited UnDefend and RedSun Defender Zero-Days
SecurityWeek 15d ago
INFO
China's Webworm Uses Discord, Microsoft Graphs to Hack EU Govts.
rss:darkreading 14d ago
INFO
FBI warns of Kali365 phishing-as-a-service after April Microsoft 365 attacks
The Record 14d ago
INFO
FBI warns of Kali365 phishing service targeting Microsoft 365 accounts
BleepingComputer 11d ago
INFO
Microsoft: Domain Controller lookup may fail on Windows Server 2016
BleepingComputer 10d ago
INFO
Anthropic Expands Claude’s Enterprise Security Governance With 28 New Integrations
SecurityWeek 10d ago
INFO
Microsoft Defender can now automatically isolate hacked endpoints
BleepingComputer 10d ago
INFO
Microsoft Issues Out-of-Band SharePoint Patch
rss:darkreading 10d ago
INFO
AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites
The Hacker News 9d ago
INFO
Windows 11 KB5089573 update released with performance improvements
BleepingComputer 9d ago
INFO
Microsoft fixes KB5089549 Windows security update install issues
BleepingComputer 4d ago
INFO
Microsoft confirms outage affecting MFA, My Sign-Ins platform
BleepingComputer 4d ago
INFO
Microsoft fixes outage affecting MFA setup, MySignIn service
BleepingComputer 4d ago
INFO
Microsoft says it will not pursue security researchers after zero-day backlash
The Record 4d ago
INFO
Microsoft investigates Office Apps, Teams file access issues
BleepingComputer 4d ago
INFO
Microsoft's Zero-Day Legal Threats Spark Backlash
rss:darkreading 4d ago
INFO
Microsoft Threatening Security Researcher
rss:schneier 3d ago
INFO
Exclusive: How One Line of Code Put Billions of Microsoft Android App Downloads at Risk
SecurityWeek 3d ago
INFO
Microsoft Exchange Online outage causes email delays, failures
BleepingComputer 3d ago
INFO
FBI-Flagged Phishing Kit Kali365 Expands Its Reach
rss:darkreading 2d ago
INFO
Microsoft's Coreutils project brings Linux commands to Windows
BleepingComputer 2d ago
INFO
New HTTP/2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy & Cloudflare
The Hacker News 2d ago
INFO
Microsoft Tries to Calm Legal Threat Fears After Zero-Day Disclosure Backlash
SecurityWeek 2d ago
INFO
One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens
The Hacker News 2d ago
INFO
Microsoft 365 Android Apps Let Any App Steal Account Tokens via Leftover Debug Flag
The Hacker News 2d ago
INFO
Coding Gaffe Exposes Microsoft 365 Accounts to Widespread Takeover
rss:darkreading 2d ago
INFO
VS Code Vulnerability Allows One-Click GitHub Token Theft
SecurityWeek 1d ago
INFO
Researcher publishes GitHub token-stealing exploit, blames Microsoft’s disclosure process
The Record 1d ago
INFO
Microsoft blames unexpected Windows driver updates on caching issue
BleepingComputer 1d ago
INFO
PCPJack Hijacks 230 AWS, Google Cloud, and Azure Servers for Covert SMTP Relay Network
The Hacker News 15h ago
INFO
New Threat Cluster OP-512 Targets Microsoft IIS Servers with Custom Web Shell Framework
The Hacker News 8h ago
INFO
Chinese APT deploys new malware to keep access to hacked networks
BleepingComputer 2h ago
HIGH
Grafana GitHub Breach Exposes Source Code via TanStack npm Attack
The Hacker News supply-chainbreachesmalware +16 16d ago
INFO
The npm Threat Landscape: Attack Surface and Mitigations (Updated May 1)
rss:unit42 34d ago
INFO
Worm Redux: Fresh Mini Shai-Hulud Infections Bite Supply Chain
rss:darkreading 24d ago
HIGH
Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets
The Hacker News 22d ago
HIGH
Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware
The Hacker News 18d ago
HIGH
Developer Workstations Are Now Part of the Software Supply Chain
The Hacker News 18d ago
HIGH
⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and More
The Hacker News 18d ago
HIGH
Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account
The Hacker News 17d ago
INFO
Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack
SecurityWeek 16d ago
INFO
TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO
The Hacker News 11d ago
INFO
Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets
The Hacker News 7d ago
INFO
Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm
The Hacker News 4d ago
INFO
Red Hat npm packages compromised to steal developer credentials
BleepingComputer 3d ago
INFO
Supply Chain Attack Hits 32 Red Hat NPM Packages
SecurityWeek 3d ago
INFO
New IronWorm malware hits 36 packages in npm supply-chain attack
BleepingComputer 1d ago
INFO
Rust-Written IronWorm Hits NPM Supply Chain
rss:darkreading 23h ago
INFO
IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks
The Hacker News 2h ago
INFO
Dark web Nemesis Market vendor gets 26 years for selling drugs
BleepingComputer breachesransomwaresupply-chain 3h ago
INFO
OWASP Incubator Project Helps Developers Find and Fix Vulnerable Dependencies in Seconds
SecurityWeek breachesransomwaresupply-chain 4h ago
CRITICAL
CVE-2026-6209 (CVSS 9.1) — Improper Access Control, Missing Authorization vulnerability in HAVELSAN Inc. Geographic Tracking Sy...
NVD CVE-2026-6209 5h ago
CRITICAL
CVE-2026-6208 (CVSS 9.1) — Authorization bypass through User-Controlled key vulnerability in HAVELSAN Inc. Geographic Tracking ...
NVD CVE-2026-6208 5h ago
CRITICAL
CVE-2026-6207 (CVSS 9.1) — Observable response discrepancy vulnerability in HAVELSAN Inc. Geographic Tracking System allows Sys...
NVD CVE-2026-6207 5h ago
INFO
Android Spyware Asin Targets Arabic Users via Fake News, PDF and War Map Apps
The Hacker News supply-chainbreachesmalware 6h ago
INFO
Over 900 US gas station tank gauge systems exposed to attacks
BleepingComputer breachesransomwaresupply-chain 6h ago
INFO
Adaptive, Agentic AI Worms Loom as Next Enterprise Threat
rss:darkreading breachesmalwarethreat-actors 6h ago
HIGH
CVE-2026-50232 (CVSS 7.2) — Lyrion Music Server 9.2.0 contains a stored cross-site scripting vulnerability that allows attackers...
NVD CVE-2026-50232 6h ago
HIGH
CVE-2026-50231 (CVSS 7.2) — Lyrion Music Server 9.2.0 contains an unauthenticated stored cross-site scripting vulnerability in t...
NVD CVE-2026-50231 6h ago
CRITICAL
CVE-2026-0257: Palo Alto Networks PAN-OS Authentication Bypass Vulnerability (Palo Alto Networks PAN-OS)
CISA KEV CVE-2026-0257actively-exploited +5 7d ago
CRITICAL
CVE-2026-0257 (CVSS 9.1) — Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks ...
NVD 23d ago
INFO
PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation
The Hacker News 6d ago
INFO
Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks
BleepingComputer 6d ago
INFO
Recent Palo Alto Networks Vulnerability Exploited for Weeks
SecurityWeek 4d ago
INFO
Threat Brief: Active Exploitation of PAN-OS CVE-2026-0257
rss:unit42 6h ago
HIGH
Verizon DBIR 2026: Vulnerability Exploitation Overtakes Credential Theft as Top Breach Vector
SecurityWeek breachesransomwaresupply-chain +4 16d ago
INFO
Most Remediation Programs Never Confirm the Fix Actually Worked
The Hacker News 23d ago
INFO
Verizon DBIR: Enterprises Face a Dangerous Vulnerability Glut
rss:darkreading 16d ago
INFO
Verizon DBIR: Healthcare Fends Off Increased Social Engineering Attacks
rss:darkreading 14d ago
INFO
What 2026 DBIR Confirms: Attacks Are Living in the Browser
BleepingComputer 6h ago
HIGH
MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems
The Hacker News supply-chainbreachesmalware +19 18d ago
INFO
'Dirty Frag' Exploit Poised to Blow Up on Enterprise Linux Distros
rss:darkreading 25d ago
INFO
It's Patch Tuesday for Microsoft & Not a Zero-Day In Sight
rss:darkreading 23d ago
INFO
Microsoft Patches 138 Vulnerabilities, Including DNS and Netlogon RCE Flaws
The Hacker News 23d ago
INFO
[Webinar] How Modern Attack Paths Cross Code, Pipelines, and Cloud
The Hacker News 23d ago
INFO
Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence
The Hacker News 21d ago
INFO
Can Laws Stop Deepfakes? South Korea Aims to Find Out
rss:darkreading 18d ago
INFO
Processes and Culture Top Reasons Behind Data Breaches
rss:darkreading 16d ago
INFO
When Identity is the Attack Path
The Hacker News 15d ago
INFO
CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV
The Hacker News 14d ago
INFO
Meta settles school district lawsuit claiming addictive design harmed students' mental health
The Record 14d ago
INFO
Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software
The Hacker News 13d ago
INFO
⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos
The Hacker News 11d ago
INFO
CERT-In Mandates 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks
The Hacker News 10d ago
INFO
RevEng.AI Raises $15 Million to Hunt for Flaws and Backdoors in Software Binaries
SecurityWeek 9d ago
INFO
California Sues 23andMe, Alleging It Failed to Protect User Data in 2023 Breach
SecurityWeek 7d ago
INFO
California AG sues 23andMe over 2023 breach exposing health data
BleepingComputer 7d ago
INFO
Kirki, Burst Statistics WordPress Plugin Flaws in Attackers’ Crosshairs
SecurityWeek 2d ago
INFO
Chrome 149 Patches 429 Vulnerabilities
SecurityWeek 9h ago
INFO
EU unveils tech sovereignty package to cut reliance on US, Chinese suppliers
The Record 7h ago
INFO
AI Worm
rss:schneier analysispolicy 7h ago
INFO
In Other News: Anthropic Maps AI Threats, Unpatched Comodo Flaw, Palantir Chief Eyed for CISA
SecurityWeek breachesransomwaresupply-chain 7h ago
INFO
Trump AI Order Seeks Voluntary Frontier Model Testing
rss:darkreading breachesmalwarethreat-actors 7h ago
HIGH
CVE-2026-50264 (CVSS 7.8) — An out-of-bounds write flaw was found in the X.Org X server and Xwayland in DRIGetBuffers/DRIGetBuff...
NVD CVE-2026-50264 8h ago
HIGH
CVE-2026-50261 (CVSS 7.8) — A use-after-free flaw was found in the X.Org X server and Xwayland in SyncChangeCounter(). A client ...
NVD CVE-2026-50261 8h ago
HIGH
CVE-2026-50260 (CVSS 7.8) — A use-after-free flaw was found in the X.Org X server and Xwayland in FreeCounter(). A client that s...
NVD CVE-2026-50260 8h ago
HIGH
CVE-2026-50259 (CVSS 7.8) — A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. _XkbSetMapChecks() ...
NVD CVE-2026-50259 8h ago
HIGH
CVE-2026-50258 (CVSS 7.8) — A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. The X server has mu...
NVD CVE-2026-50258CVE-2025-26597 8h ago
HIGH
CVE-2026-50257 (CVSS 7.8) — A use-after-free flaw was found in the X.Org X server and Xwayland in miSyncDestroyFence(). A client...
NVD CVE-2026-50257 8h ago
HIGH
CVE-2026-50256 (CVSS 7.8) — A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. A mismatch between ...
NVD CVE-2026-50256 8h ago
INFO
CISA Adds One Known Exploited Vulnerability to Catalog
rss:cisa-advisories actively-exploitedadvisories +3 8h ago
INFO
CISA Adds One Known Exploited Vulnerability to Catalog
rss:cisa-advisories 4d ago
INFO
CISA Adds Two Known Exploited Vulnerabilities to Catalog
rss:cisa-advisories 3d ago
INFO
CISA Adds One Known Exploited Vulnerability to Catalog
rss:cisa-advisories 2d ago
INFO
Hackers Leak DentaQuest Information Impacting 2.6 Million
SecurityWeek breachesransomwaresupply-chain +11 9h ago
INFO
Instructure Breach Exposes Schools' Vendor Dependence
rss:darkreading 29d ago
INFO
ShinyHunters Claims Second Attack Against Instructure
rss:darkreading 28d ago
INFO
Instructure Reaches Ransom Agreement with ShinyHunters to Stop 3.65TB Canvas Leak
The Hacker News 24d ago
INFO
Congress Puts Heat on Instructure After Canvas Outage
rss:darkreading 21d ago
INFO
7-Eleven confirms breach after ShinyHunters claims
The Record 16d ago
INFO
7-Eleven data breach exposes personal information of 185,000 people
BleepingComputer 10d ago
INFO
185,000 Likely Impacted by 7-Eleven Data Breach
SecurityWeek 10d ago
INFO
Charter confirms data breach after ShinyHunters extortion threat
BleepingComputer 10d ago
INFO
Carnival Cruise confirms data breach affecting nearly 6 million people
BleepingComputer 8d ago
INFO
Charter Communications data breach affects 4.9 million accounts
BleepingComputer 7d ago
INFO
Charter Communications Data Breach Could Impact Nearly 5 Million
SecurityWeek 7d ago
INFO
Only 10% of SOCs Say They’re Getting Excellent Value From AI. Here’s What the Second Wave Has to Deliver
The Hacker News supply-chainbreachesmalware 9h ago
HIGH
CVE-2026-50265 (CVSS 7) — A flaw was found in libinput. A local attacker with access to /dev/uinput can inject arbitrary udev ...
NVD CVE-2026-50265 9h ago
INFO
Industry Reactions to New Trump AI Cybersecurity Executive Order: Feedback Friday
SecurityWeek breachesransomwaresupply-chain 10h ago
CRITICAL
CVE-2026-6274 (CVSS 9.8) — Improper Authentication, Missing authentication for critical function, Weak Authentication vulnerabi...
NVD CVE-2026-6274 11h ago
HIGH
CVE-2026-11332 (CVSS 7.8) — A flaw was found in ansible-core. The ansible-galaxy role install command processes dependency speci...
NVD CVE-2026-11332 11h ago
INFO
Five Eyes: Chinese Spies Target Government, Military Staff With Fake Job Opportunities
SecurityWeek breachesransomwaresupply-chain +1 12h ago
INFO
Five Eyes warn Chinese spies are using job sites to recruit insiders
The Record 1d ago
INFO
Hackers Exploit Critical Everest Forms Pro WordPress Plugin Flaw to Take Over Sites
The Hacker News CVE-2026-3300supply-chainbreaches 12h ago
INFO
Nightclub Giant RCI Says Data Breach Affects 40,000 Individuals
SecurityWeek breachesransomwaresupply-chain 13h ago
INFO
FIFA World Cup 2026 Scams Are Already Live: Fake Sites, Banking Malware, and Stolen Logins
The Hacker News supply-chainbreachesmalware 13h ago
HIGH
CVE-2026-20245 (CVSS 7.8) — A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an...
NVD CVE-2026-20245 +2 21h ago
INFO
Cisco Warns of 7th SD-WAN Zero-Day Exploited in 2026
SecurityWeek 15h ago
INFO
Cisco warns of unpatched SD-WAN zero-day exploited in attacks
BleepingComputer 14h ago
MEDIUM
CVE-2026-10878 (CVSS 6.3) — A vulnerability was detected in D-Link DWR-M920 1.1.50/1.1.70. Affected is the function sub_41C8E8 o...
NVD CVE-2026-10878 20h ago
HIGH
CVE-2026-10877 (CVSS 7.3) — A security vulnerability has been detected in SourceCodester Ship Ferry Ticket Reservation System up...
NVD CVE-2026-10877 20h ago
HIGH
CVE-2026-10586 (CVSS 7.2) — The Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns plugin for WordPress i...
NVD CVE-2026-10586 20h ago
CRITICAL
CVE-2026-28318: SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability (SolarWinds Serv-U)
CISA KEV CVE-2026-28318actively-exploited +1 20h ago
HIGH
CVE-2026-28318 (CVSS 7.5) — SolarWinds Serv-U is susceptible to specially crafted POST requests that crash the Serv-U service wi...
NVD 1d ago
HIGH BleepingComputer Wed, 20 May 2026 07:31:15 UTC
Microsoft shares mitigation for YellowKey Windows zero-day
https://www.bleepingcomputer.com/news/microsoft/microsoft-shares-mitigation-for-yellowkey-windows-zero-day/
TL;DR AI
A highly publicized data breach at a major US retailer exposed sensitive customer data, including credit card numbers and addresses, of approximately 106 million customers. The breach is believed to have occurred between 2014 and 2017, and was disclosed to affected customers in October 2019. The breach compromised the credit card data, as well as other customer information, through a vulnerability in the retailer's point-of-sale system.
breachesransomwaresupply-chainmalwarezero-day
Read full story ↗
Related coverage (47)
Azerbaijani Energy Firm Hit by Repeated Microsoft Exchange Exploitation
The Hacker News 23d ago
Microsoft's MDASH AI System Finds 16 Windows Flaws Fixed in Patch Tuesday
The Hacker News 23d ago
Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation
The Hacker News 22d ago
Zero-Day Exploit Against Windows BitLocker
rss:schneier 18d ago
Compromised Nx Console 18.95.0 Targeted VS Code Developers with Credential Stealer
The Hacker News 17d ago
The New Phishing Click: How OAuth Consent Bypasses MFA
The Hacker News 17d ago
Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks
SecurityWeek 17d ago
Microsoft Disrupts Malware-Signing Service Run by ‘Fox Tempest’
SecurityWeek 17d ago
Stealer Spoofs Google, Microsoft & Apple, Then Backdoors macOS
rss:darkreading 17d ago
Cybercrime service disrupted for abusing Microsoft platform to sign malware
BleepingComputer 16d ago
Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API
The Hacker News 16d ago
Microsoft Takes Down Malware-Signing Service Behind Ransomware Attacks
The Hacker News 16d ago
Microsoft Rolls Out Mitigations for ‘YellowKey’ BitLocker Bypass
SecurityWeek 16d ago
Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During Development
The Hacker News 16d ago
Microsoft warns of new Defender zero-days exploited in attacks
BleepingComputer 15d ago
Microsoft Patches Exploited UnDefend and RedSun Defender Zero-Days
SecurityWeek 15d ago
China's Webworm Uses Discord, Microsoft Graphs to Hack EU Govts.
rss:darkreading 14d ago
FBI warns of Kali365 phishing-as-a-service after April Microsoft 365 attacks
The Record 14d ago
FBI warns of Kali365 phishing service targeting Microsoft 365 accounts
BleepingComputer 11d ago
Microsoft: Domain Controller lookup may fail on Windows Server 2016
BleepingComputer 10d ago
Anthropic Expands Claude’s Enterprise Security Governance With 28 New Integrations
SecurityWeek 10d ago
Microsoft Defender can now automatically isolate hacked endpoints
BleepingComputer 10d ago
Microsoft Issues Out-of-Band SharePoint Patch
rss:darkreading 10d ago
AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites
The Hacker News 9d ago
Windows 11 KB5089573 update released with performance improvements
BleepingComputer 9d ago
Microsoft fixes KB5089549 Windows security update install issues
BleepingComputer 4d ago
Microsoft confirms outage affecting MFA, My Sign-Ins platform
BleepingComputer 4d ago
Microsoft fixes outage affecting MFA setup, MySignIn service
BleepingComputer 4d ago
Microsoft says it will not pursue security researchers after zero-day backlash
The Record 4d ago
Microsoft investigates Office Apps, Teams file access issues
BleepingComputer 4d ago
Microsoft's Zero-Day Legal Threats Spark Backlash
rss:darkreading 4d ago
Microsoft Threatening Security Researcher
rss:schneier 3d ago
Exclusive: How One Line of Code Put Billions of Microsoft Android App Downloads at Risk
SecurityWeek 3d ago
Microsoft Exchange Online outage causes email delays, failures
BleepingComputer 3d ago
FBI-Flagged Phishing Kit Kali365 Expands Its Reach
rss:darkreading 2d ago
Microsoft's Coreutils project brings Linux commands to Windows
BleepingComputer 2d ago
New HTTP/2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy & Cloudflare
The Hacker News 2d ago
Microsoft Tries to Calm Legal Threat Fears After Zero-Day Disclosure Backlash
SecurityWeek 2d ago
One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens
The Hacker News 2d ago
Microsoft 365 Android Apps Let Any App Steal Account Tokens via Leftover Debug Flag
The Hacker News 2d ago
Coding Gaffe Exposes Microsoft 365 Accounts to Widespread Takeover
rss:darkreading 2d ago
VS Code Vulnerability Allows One-Click GitHub Token Theft
SecurityWeek 1d ago
Researcher publishes GitHub token-stealing exploit, blames Microsoft’s disclosure process
The Record 1d ago
Microsoft blames unexpected Windows driver updates on caching issue
BleepingComputer 1d ago
PCPJack Hijacks 230 AWS, Google Cloud, and Azure Servers for Covert SMTP Relay Network
The Hacker News 15h ago
New Threat Cluster OP-512 Targets Microsoft IIS Servers with Custom Web Shell Framework
The Hacker News 8h ago
Chinese APT deploys new malware to keep access to hacked networks
BleepingComputer 2h ago