Ransomware
SecScore ●●●○○ 10.07. 10:17
A former employee of cybersecurity incident response company DigitalMint was sentenced to 70 months in prison for targeting U.S. companies in BlackCat (ALPHV) ransomware attacks. [...]
BleepingComputer
CVE
SecScore ●●●○○ 10.07. 10:01
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 10.07. 10:01
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 10.07. 10:01
Information published.
MSRC Advisories
Microsoft
SecScore ●●●○○ 10.07. 08:34
Was hat sich in der vergangenen Woche für Developer und IT-Pros getan? Was waren die wichtigsten Ankündigungen? Gab es neue Lernressourcen? Unser TechWiese-Team hat jede Menge Links für dich zusammengestellt.
MS Techwiese
Ransomware
SecScore ●●●●● 09.07. 20:08
Microsoft has taken apart a destructive Windows backdoor it calls GigaWiper. What stands out is how it is built: not one tool but three older destructive programs bolted into one, offered as commands the operator can ch…
The Hacker News
Microsoft
SecScore ●●○○○ 09.07. 20:00
With Wimbledon's help, Hazel argues against the popular myth that "Attackers only need to be right once, but defenders need to be right 100% of the time."
Talos Intelligence
Ransomware
SecScore ●●●●○ 09.07. 19:08
A new data-extortion group called Helix is using identity-focused tactics such as voice phishing (vishing), device code phishing, and multi-factor authentication (MFA) abuse to steal data from SharePoint environments. […
BleepingComputer
Microsoft
SecScore ●●●○○ 09.07. 19:00
Microsoft says Windows users should expect to see an increase in security updates as the company increasingly relies on artificial intelligence to discover vulnerabilities in its codebase. [...]
BleepingComputer
Ransomware
SecScore ●●●○○ 09.07. 17:00
GigaWiper is a destructive backdoor that combines multiple wiping and ransomware-like capabilities into a single operational platform. This blog analyzes how the malware incorporates code from several previously separat…
Microsoft Security
Phishing
SecScore ●●●●○ 09.07. 16:39
A new phishing-as-a-service (PhaaS) operation called Forg365 focuses on stealing Microsoft 365 accounts by combining adversary-in-the-middle (AiTM) and device code methods with AI-assisted lure generation. [...]
BleepingComputer
CVE
SecScore ●●●●● 09.07. 14:31
The privilege escalation vulnerability tracked as CVE-2026-50656 has been patched with a Microsoft Malware Protection Engine update.
The post Microsoft Patches Defender ‘RoguePlanet’ Vulnerability appeared f…
Security Week
CVE
SecScore ●●●●○ 09.07. 14:18
Hackers exploited a zero-day vulnerability in a third-party system to access a KDDI email system for ISPs.
The post 12 Million Impacted by Data Breach at Japanese Telco KDDI appeared first on SecurityWeek.
Security Week
Microsoft
SecScore ●●●●● 09.07. 13:00
Microsoft has announced plans to disable Outlook Web Access (OWA) Light, the lightweight version of the Outlook Web App email client, in a future Exchange Server update. [...]
BleepingComputer
CVE
SecScore ●●●○○ 09.07. 10:50
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:50
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:50
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:50
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:49
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:49
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:49
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:48
Information published.
MSRC Advisories
CVE
SecScore ●●●●● 09.07. 10:48
Microsoft has released security updates for a Defender vulnerability known as RoguePlanet, nearly a month after details of the flaw became public.
The vulnerability, tracked as CVE-2026-50656 (CVSS score: 7.8), is a pr…
The Hacker News
CVE
SecScore ●●●○○ 09.07. 10:48
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:48
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:47
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:47
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:46
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:46
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:46
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:45
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:44
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:44
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:44
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:44
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:44
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:42
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:41
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:40
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:40
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:03
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:02
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:02
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:02
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:02
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:01
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:01
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:01
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:01
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:01
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:01
Information published.
MSRC Advisories
CVE
SecScore ●●●○○ 09.07. 10:01
Information published.
MSRC Advisories
Microsoft
SecScore ●●○○○ 09.07. 09:41
Die neue Preview-Funktion ermöglicht die automatisierte Validierung der Systemzuverlässigkeit anhand realer Produktionsausfälle.
MS Techwiese
CVE
SecScore ●●●●● 09.07. 07:42
Microsoft has released a security patch to address a Defender zero-day vulnerability known as "RoguePlanet," disclosed after the June 2026 Patch Tuesday. [...]
BleepingComputer
Malware
SecScore ●●●○○ 08.07. 20:56
A China-linked threat cluster has been exploiting vulnerable Roundcube servers at U.S. and Canadian universities to steal credentials and deploy backdoor malware. [...]
BleepingComputer
Microsoft
SecScore ●●●○○ 08.07. 19:00
At Microsoft we encompass these security requirements, along with threat knowledge, and operational frameworks in our Secure Future Initiative (SFI), to guide what a well-defended cloud service looks like. But defining …
Microsoft Security
APT
SecScore ●●●●● 08.07. 18:47
A threat actor has been targeting organizations across multiple sectors with voice-based fake security requests that ask Microsoft 365 users to enroll a new Entra passkey. [...]
BleepingComputer
Breach
SecScore ●●○○○ 08.07. 15:54
How's this for a location?! I mean, last week was nice with Scott in Mallorca, but Marrakech is, well, wow 😮 Anyway, about those data breaches... This week I'm talking about the futility of attempting …
Troy Hunt
Microsoft
SecScore ●●○○○ 08.07. 11:55
Die offizielle Version 2.0 von Spring AI führt standardisierte Schnittstellen für Vektorsuche und persistenten Chat-Speicher auf Azure Cosmos DB ein.
MS Techwiese
Phishing
SecScore ●●●●● 07.07. 17:14
A Microsoft 365 device code phishing campaign has been observed leveraging collaboration-themed lures to take control of victim accounts between the last week of June 2026 and into early July, per findings from ZeroBEC.…
The Hacker News
Microsoft
SecScore ●●●○○ 07.07. 15:27
U.S. prosecutors linked an alleged Scattered Spider hacker to a break-in at a luxury jewelry retailer using a persistent Windows device ID, according to a newly unsealed federal complaint.
Microsoft records tied that I…
The Hacker News
CVE
SecScore ●●●●○ 06.07. 18:28
Threat actors have been observed attempting to exploit a recently patched critical security flaw in Gitea Docker images, according to Sysdig.
The vulnerability in question is CVE-2026-20896 (CVSS score: 9.8), a vulnera…
The Hacker News
Microsoft
SecScore ●●●○○ 06.07. 18:00
Read five key learnings from the Frost & Sullivan 2025 Frost Radar™ for CSPM to learn how CSPM is evolving from point-in-time compliance to continuous risk management.
The post 5 insights from Frost & Sullivan’…
Microsoft Security
Microsoft
SecScore ●●●●● 03.07. 08:53
Was hat sich in der vergangenen Woche für Developer und IT-Pros getan? Was waren die wichtigsten Ankündigungen? Gab es neue Lernressourcen? Unser TechWiese-Team hat jede Menge Links für dich zusammengestellt.
MS Techwiese
Microsoft
SecScore ●●○○○ 03.07. 00:00
A look inside the reverse-engineering journey of building the first RDP client outside of Windows to support WebAuthn redirection.
The post How We Added WebAuthn to a Browser-Based RDP Client appeared first on Unit 42.
Unit 42
APT
SecScore ●●●●○ 02.07. 20:00
What do board games and cybersecurity have in common? Pattern recognition. Strategy. Adaptation. In this week’s Threat Source Bill explores why curiosity may be a defender’s most valuable skill.
Talos Intelligence
Microsoft
SecScore ●●●○○ 02.07. 18:00
Read how Microsoft strengthens partner ecosystem security with CSP vetting, least privilege access, monitoring, and risk management best practices.
The post Improving security posture across the Microsoft partner ecosys…
Microsoft Security
Microsoft
SecScore ●●●○○ 02.07. 08:00
Der KI-gestützte Agent vereint Telemetriedaten sowie Kontextanalysen und ermöglicht automatisierte Triage-Prozesse zur Reduzierung der Systemwiederherstellungszeit.
MS Techwiese
Microsoft
SecScore ●●●○○ 01.07. 18:00
Frost & Sullivan names Microsoft a leader as cloud and application security converge into unified, runtime risk reduction.
The post Microsoft named a leader in the Frost Radar for cloud and application runtime secu…
Microsoft Security
CVE
SecScore ●●●●● 01.07. 14:00
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.
CVE-2026-45659 Microsoft SharePoint Server Deserialization of Untrusted Data Vulnerab…
CISA Advisories
Phishing
SecScore ●●●●○ 01.07. 12:00
Talos has identified "ARToken," a phishing-as-a-service platform that targets Microsoft 365. The ARToken panel exposes 80+ API endpoints for device code phishing, Primary Refresh Token persistence, email access, BEC ope…
Talos Intelligence
Microsoft
SecScore ●●●●○ 01.07. 08:00
Der generative KI-Assistent beschleunigt die Erkennung von Bedrohungen, automatisiert Untersuchungen und lässt sich über Plugins flexibel erweitern.
MS Techwiese
Research
SecScore ●●○○○ 01.07. 03:00
Attackers can exploit LLM domain hallucinations through phantom squatting to target supply chains. Read the analysis to learn more.
The post Phantom Squatting: AI-Hallucinated Domains as a Software Supply Chain Vector …
Unit 42
Microsoft
SecScore ●●●○○ 30.06. 21:00
We’re accelerating quantum-safe readiness—and sharing what organizations can do now to transition earlier and with confidence.
The post Accelerating the quantum-safe timeline appeared first on Microsoft Security Blog.
Microsoft Security
Microsoft
SecScore ●●●●○ 30.06. 18:00
This month’s updates help security and IT teams strengthen identity and multicloud foundations, protect data wherever it lives, and secure the developer workflows powering AI innovation.
The post What’s new in Microso…
Microsoft Security
APT
SecScore ●●●○○ 30.06. 17:57
MCP tool poisoning turns trusted AI agents into a control plane for data loss. Learn how threat actors manipulate tool descriptions to trigger unauthorized actions, and how to detect, contain, and prevent it.
The post S…
Microsoft Security
Microsoft
SecScore ●●●○○ 30.06. 14:00
View CSAF
Summary
Successful exploitation of these vulnerabilities could allow attackers to gain broad unauthorized access, execute arbitrary commands with root privileges, steal sensitive data, and perform actions on b…
CISA Advisories
Microsoft
SecScore ●●○○○ 30.06. 08:00
Erweiterungen bei Azure Confidential Computing stärken den Hardware-basierten Datenschutz für regulierte Workflows und digitale Souveränität.
MS Techwiese
Microsoft
SecScore ●●●○○ 29.06. 18:27
A malicious Chromium-based extension that spoofs the AI-powered answer engine Perplexity AI redirects browser search traffic using MV3 APIs and intermediary infrastructure.
The post Chromium extension uses AI‑related br…
Microsoft Security
Microsoft
SecScore ●●●○○ 29.06. 08:00
Durch die Kopplung von Telemetrie-Analyse mit einer offenen Schnittstelle für Kosten- und Nutzungsdaten automatisiert Azure betriebliche Workflows unter Einhaltung von Governance-Richtlinien.
MS Techwiese
Threat Intel
SecScore ●●○○○ 26.06. 21:05
We provide guidance for preparing for and mitigating large-scale credential attacks, focusing on recent campaigns targeting security vendors' devices.
The post Threat Brief: Mitigating Large-Scale Credential Attacks ap…
Unit 42
APT
SecScore ●●●○○ 26.06. 00:30
Microsoft Threat Intelligence identified an active multi-stage intrusion campaign targeting hospitality organizations in Europe and Asia. The campaign uses photo-themed ZIP archives and fake image shortcut files to deli…
Microsoft Security
APT
SecScore ●○○○○ 26.06. 00:00
Government entities and critical infrastructure were targeted for espionage in SE Asia by attackers using a hybrid toolkit, including custom TinyRCT backdoor.
The post CL-STA-1062 Targets Southeast Asian Governments an…
Unit 42
Microsoft
SecScore ●●●○○ 24.06. 08:00
Integrierte Microsoft-Werkzeuge und KI-Unterstützung erleichtern den Wechsel in die Cloud sowie die Modernisierung von Datenbeständen.
MS Techwiese
Microsoft
SecScore ●●●○○ 23.06. 08:00
Der neue Azure Copilot Observability Agent in Azure Monitor verknüpft verteilte Cluster- und Applikationssignale für eine evidenzbasierte Ursachenanalyse von AKS-Infrastruktur-Problemen.
MS Techwiese
Breach
SecScore ●●○○○ 23.06. 00:00
Unit 42 research details how attackers could exploit global name uniqueness in bucket hijacking to redirect cloud data streams across major CSPs.
The post The Global Namespace Risk: Universal Bucket Hijacking Technique …
Unit 42
Microsoft
SecScore ●○○○○ 22.06. 08:38
Eine neue offene Spezifikation automatisiert das Finden und Einbinden nützlicher KI-Ressourcen für Developer und IT-Professionals.
MS Techwiese
CVE
SecScore ●●●●○ 20.06. 05:02
In June 2026, retailer JCPenney and associated brands were targeted in a ShinyHunters "pay or leak" extortion campaign. Data allegedly obtained from JCPenney through the exploitation of a critical zero-day vulnerability…
HaveIBeenPwned
Microsoft
SecScore ●●●○○ 19.06. 09:39
Was hat sich in der vergangenen Woche für Developer und IT-Pros getan? Was waren die wichtigsten Ankündigungen? Gab es neue Lernressourcen? Unser TechWiese-Team hat jede Menge Links für dich zusammengestellt.
MS Techwiese
Microsoft
SecScore ●●●○○ 17.06. 08:00
Microsoft bringt verschlüsselten und authentifizierten Client-zu-Server-DNS-Verkehr nativ in die Infrastruktur von Windows Server 2025.
MS Techwiese
Threat Intel
SecScore ●●●○○ 16.06. 12:00
Unit 42 discovered a Vertex AI Python SDK vulnerability that allows remote code execution via bucket squatting. Read the article for more.
The post Pickle in the Middle – Hijacking Vertex AI Model Uploads for Cross-Ten…
Unit 42
Breach
SecScore ●●●○○ 16.06. 01:00
Attackers can move from access to exfiltration in 72 minutes. Learn how modern SOC teams close the speed gap with Unit 42's AI-driven automation, threat hunting, MDR and Managed XSIAM.
The post Inside the Modern SOC: Th…
Unit 42
Microsoft
SecScore ●●○○○ 15.06. 08:36
Ein unveränderlicher und containeroptimierter Host für mehr Konsistenz und standardmäßige Sicherheit von Kubernetes-Workloads.
MS Techwiese
Microsoft
SecScore ●●●○○ 12.06. 08:17
Was hat sich in der vergangenen Woche für Developer und IT-Pros getan? Was waren die wichtigsten Ankündigungen? Gab es neue Lernressourcen? Unser TechWiese-Team hat jede Menge Links für dich zusammengestellt.
MS Techwiese
Microsoft
SecScore ●●○○○ 10.06. 08:01
Foundry Local auf Azure Local ermöglicht das Erstellen, Bereitstellen und Verwalten von KI-Workflows vollständig innerhalb der eigenen kontrollierten Infrastruktur.
MS Techwiese
CVE
SecScore ●●●●● 10.06. 00:07
Microsoft today released software updates to plug nearly 200 security holes across its Windows operating systems and supported software, a record number of fixes for the company's monthly Patch Tuesday cycle. Nearly thr…
Krebs on Security
CVE
SecScore ●●●○○ 09.06. 23:21
Microsoft Patch Tuesday details for June 2026.
Talos Intelligence
CVE
SecScore ●●●○○ 09.06. 16:05
We include indicators of activity and mitigations for PAN-OS vulnerability CVE-2026-0257.
The post Threat Brief: Active Exploitation of PAN-OS CVE-2026-0257 appeared first on Unit 42.
Unit 42
Microsoft
SecScore ●●●●○ 09.06. 01:00
Attackers are increasingly targeting collaboration platforms like Microsoft Teams. Learn the risks and key steps to strengthen your organization's security.
The post When “Hi, This Is IT” Comes Through Microsoft Teams a…
Unit 42
Microsoft
SecScore ●●●○○ 08.06. 17:37
Assistive AI agents aren't always helpful—it all depends on who they're working on behalf of.
Red Canary
Microsoft
SecScore ●●●○○ 05.06. 11:22
Was wurde in der vergangenen Woche auf der Microsoft Build für Developer und IT-Pros vorgestellt? Unser TechWiese-Team hat viele interessante Links für dich zusammengestellt.
MS Techwiese
Microsoft
SecScore ●●○○○ 03.06. 08:27
Microsoft stellt auf der Build 2026 die Microsoft Agent Platform, neue MAI-Modelle und tiefe Betriebssystem-Erweiterungen für autonome KI-Systeme vor.
MS Techwiese
Malware
SecScore ●○○○○ 02.06. 19:30
Unit 42 analyzes npm supply chain evolution post-Shai Hulud. Discover wormable malware, CI/CD persistence, multi-stage attacks and more.
The post The npm Threat Landscape: Attack Surface and Mitigations (Updated June 2…
Unit 42
Microsoft
SecScore ●●●○○ 02.06. 18:59
Microsoft Build 2026 highlights advancements in app development with Microsoft Fabric and Microsoft Databases, emphasizing a unified data and AI platform for scalable, agentic applications.
The post Microsoft Build 2026…
Azure Security Blog
Microsoft
SecScore ●●●○○ 02.06. 08:00
Die neue Chat-Erfahrung bei Azure Copilot ermöglicht die Analyse von Telemetriedaten über natürliche Sprache ohne das manuelle Schreiben von KQL-Abfragen.
MS Techwiese
Microsoft
SecScore ●●●●● 01.06. 15:04
Entra ID agent users can send malicious content to human users via Microsoft Teams. Here’s what to look out for.
Red Canary
Breach
SecScore ●●○○○ 01.06. 10:22
Today, I loaded the 1,000th data breach into Have I Been Pwned. Reflecting on that milestone number, I pondered how to mark the occasion in writing, and what immediately came to mind was a very simple question: why is i…
Troy Hunt
Microsoft
SecScore ●●●●● 01.06. 08:32
Das von Azure verwaltete Portal ermöglicht Entwicklungsteams das unternehmensweite Entdecken, Testen und Verwalten von Programmierschnittstellen sowie modernen KI-Komponenten.
MS Techwiese
Microsoft
SecScore ●●●○○ 29.05. 09:45
Was hat sich in der vergangenen Woche für Developer und IT-Pros getan? Was waren die wichtigsten Ankündigungen? Gab es neue Lernressourcen? Unser TechWiese-Team hat jede Menge Links für dich zusammengestellt.
MS Techwiese
CVE
SecScore ●●●○○ 28.05. 15:44
DoublePulsar
Ransomware
SecScore ●●●●○ 28.05. 09:22
In April 2026, the American insurance holding company Kemper Corporation was named by the ShinyHunters ransomware group in a "pay or leak" extortion campaign. The attackers allegedly accessed Kemper's Salesforce environ…
HaveIBeenPwned
Microsoft
SecScore ●●●○○ 27.05. 14:58
Read our primer on how to detect and respond to an autonomous agent escalating privileges and persisting in your Entra ID tenant
Red Canary
Microsoft
SecScore ●●●●● 27.05. 08:00
Die allgemeine Verfügbarkeit von Entra-Only-Identitäten für Azure Files SMB ermöglicht cloudnativen, identitätsbasierten Dateizugriff ohne Active Directory.
MS Techwiese
Microsoft
SecScore ●●○○○ 26.05. 08:40
Ein aufeinander abgestimmtes Zusammenspiel von Compute, Storage und Netzwerk verhindert Engpässe und sichert konsistente Leistung für KI, Cloud-Native und geschäftskritische Systeme.
MS Techwiese
Blog
SecScore ●○○○○ 26.05. 00:52
Today, we welcome the 45th government onboarded to Have I Been Pwned’s free gov service: Bhutan. The Bhutan Computer Incident Response Team, BtCIRT, now has access to monitor Bhutanese government domains against …
Troy Hunt
Microsoft
SecScore ●●●○○ 22.05. 09:21
Was hat sich in der vergangenen Woche für Developer und IT-Pros getan? Was waren die wichtigsten Ankündigungen? Gab es neue Lernressourcen? Unser TechWiese-Team hat jede Menge Links für dich zusammengestellt.
MS Techwiese
Microsoft
SecScore ●●○○○ 21.05. 08:00
Eine vertiefte Plattform-Kopplung und agentenbasierte Workflows verbinden SAP-Geschäftsprozesse direkt mit der Microsoft-Cloud-Infrastruktur.
MS Techwiese
Blog
SecScore ●○○○○ 14.05. 05:49
Today, we welcome the 44th government onboarded to Have I Been Pwned’s free gov service: The Bahamas. The National Computer Incident Response Team of The Bahamas, CIRT-BS, now has access to monitor government dom…
Troy Hunt
CVE
SecScore ●●●●● 11.05. 16:05
The EtherRAT malware family was first reported by Sysdig back in December 2025. At that time, the initial access vector was exploitation of CVE-2025-55182 (React2Shell) targeting Linux servers. In March 2026, a Windows …
The DFIR Report
Microsoft
SecScore ●●●○○ 04.05. 18:00
Security for cloud infrastructure is no longer defined by a single control, product, or boundary. Modern threats target identity, software supply chains, control planes, networks, and data simultaneously.
The post Azure…
Azure Security Blog
Microsoft
SecScore ●●●○○ 30.04. 20:00
As cloud workloads become more agentic and AI systems handle increasingly sensitive data, trust must be engineered directly into infrastructure. Azure Integrated HSM brings hardware‑enforced key protection into Azure, e…
Azure Security Blog
APT
SecScore ●●●○○ 23.04. 17:50
DoublePulsar
Advisory
SecScore ●○○○○ 23.04. 14:00
New advisory highlights how to defend against attacker tactics believed to be used by China-linked actors to hide malicious cyber activity.
NCSC UK
Microsoft
SecScore ●●●●○ 15.04. 12:40
BSI
APT
SecScore ●●●○○ 07.04. 14:00
New advisory warns cyber threat group APT28 have exploited vulnerable edge devices to support malicious operations.
NCSC UK
APT
SecScore ●●●○○ 07.04. 14:00
Russian cyber actor APT28 exploit vulnerable routers to hijack DNS, enabling adversary‑in‑the‑middle attacks and theft of passwords and authentication tokens.
NCSC UK
Microsoft
SecScore ●●●○○ 01.04. 18:00
Azure IaaS provides foundational capabilities across compute, storage, and networking to help organizations stay resilient.
The post Azure IaaS: Keep critical applications running with built-in resiliency at scale appea…
Azure Security Blog
Advisory
SecScore ●●○○○ 30.03. 14:00
The NCSC is encouraging UK organisations to mitigate an unauthenticated remote code execution vulnerability affecting F5 BIG-IP Access Policy Manager.
NCSC UK
Microsoft
SecScore ●●●●○ 25.03. 12:10
BSI
Microsoft
SecScore ●●●●○ 04.03. 18:00
As organizations accelerate digital transformation, infrastructure decisions increasingly shape how quickly teams can adopt AI, how reliably applications operate at global scale, and how effectively businesses respond t…
Azure Security Blog
Advisory
SecScore ●○○○○ 25.02. 13:00
Agencies strongly encourage immediate investigation of potential compromise of Cisco Catalyst SD-WAN.
NCSC UK
Ransomware
SecScore ●●●○○ 23.02. 15:09
Key Takeaways An audio version of this report can be found on Spotify, Apple, YouTube, Audible, & Amazon.  This intrusion began in mid-February 2024 after a threat actor exploited a vul…
The DFIR Report
Microsoft
SecScore ●●●○○ 17.02. 17:00
Modern cloud systems are expected to deliver more than uptime. Customers expect consistent performance, the ability to withstand disruption, and confidence that recovery is predictable and intentional.
The post Azure re…
Azure Security Blog
CVE
SecScore ●●●○○ 13.02. 11:25
BSI
Ransomware
SecScore ●○○○○ 21.11. 00:55
DoublePulsar
APT
SecScore ●●●○○ 05.11. 08:00
We continue to adapt our sovereignty approach—innovating to meet customer needs and regulatory requirements within our Sovereign Public Cloud and Sovereign Private Cloud. We are announcing a new wave of capabilities, bu…
Azure Security Blog
APT
SecScore ●○○○○ 03.11. 19:44
DoublePulsar
Microsoft
SecScore ●●●○○ 03.11. 18:00
Microsoft is announcing the preview of Signing Transparency to address software supply chain threats that traditional code signing alone cannot fully prevent, building on the Zero Trust principle of “never trust, always…
Azure Security Blog
Microsoft
SecScore ●●●○○ 28.10. 11:20
BSI
Microsoft
SecScore ●●●○○ 27.10. 12:10
BSI
Microsoft
SecScore ●●●○○ 23.10. 12:01
DoublePulsar
Microsoft
SecScore ●●●○○ 14.10. 20:00
Oracle Database@Azure adds new AI-ready features, expands to 33 regions, and launches new partner and migration programs
The post Oracle Database@Azure offers new features, regions, and programs to unlock data and AI in…
Azure Security Blog
Ransomware
SecScore ●●●●○ 05.08. 23:30
Overview Bumblebee malware has been an initial access tool used by threat actors since late 2021. In 2023 the malware was first reported as using SEO poisoning as a delivery mechanism. Recently in May of 2025 Cyjax repo…
The DFIR Report
CVE
SecScore ●●●●● 04.08. 10:15
BSI
Microsoft
SecScore ●●●●○ 01.07. 17:00
Forrester Research shows how Azure helps enterprises scale generative AI securely, overcoming infrastructure and compliance challenges to unlock real business value.
The post Building secure, scalable AI in the cloud wi…
Azure Security Blog
Microsoft
SecScore ●●●●○ 14.01. 19:45
BSI