From late April 2026 to mid-June 2026, Microsoft Defender Experts observed increased ACR Stealer activity across customer ...
Microsoft has observed a surge in attacks using the ACR Stealer malware to steal browser-stored passwords, authentication ...
A security analyst at a large enterprise recently found sensitive HR documents being copied into a Microsoft Teams channel that hundreds of employees could access. It was not caused by a malicious ...
Microsoft and OEMs fixed key Secure Boot certificate issues for IT admins at a live office hours event, covering BIOS updates ...
Microsoft has announced that passkeys will become the default authentication method for the Entra ID enterprise identity ...
UAC-0145 uses fake CAPTCHA checks on compromised sites to push Windows malware, while COWARDDUCK backdoors Android devices ...
Gone in a heartbeat.
In Operation Muck and Load, over 200 GitHub repositories serve a Go module that leads to Windows malware infections.
Microsoft has been rethinking its commitment to Windows for a while now, with Insider builds of the operating system showing a swing away from web-based user experiences and back to native code. That ...
Microsoft Patch Tuesday July 2026 delivers 622 CVEs, the largest release in company history, with two exploited zero-days in ...
SCMBANKER watches banking windows, captures screenshots, hijacks CLABE and card numbers, and can deploy Remote Utilities for ...