SecurityWeek

Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks

Attackers are increasingly abusing Microsoft’s legacy MSHTA utility to silently deliver malware, stealers, and persistent ...
Microsoft

How Storm-2949 turned a compromised identity into a cloud-wide breach

Storm-2949 turned stolen credentials into a cloud-wide breach, moving from identity compromise to large-scale data theft ...

Scammers are abusing an internal Microsoft account to send spam links

The loophole allows spammers and scammers to send emails from a legitimate Microsoft email address typically used for sending ...
Windows Latest

Microsoft is killing SMS codes for Microsoft account sign-in, aggressively pushes passkeys on Windows 11

Microsoft is ending SMS login codes for personal accounts and replacing them with passkeys, authenticator apps, and backup ...
Microsoft

Exposing Fox Tempest: A malware-signing service operation

Fox Tempest is a financially motivated threat actor operating a malware‑signing‑as‑a‑service (MSaaS) used by other ...

Double murder mystery is linked to Tom Selleck as dire warning issued

An elderly California couple found dead inside their country club home had reportedly been caught in a disturbing online scam ...

Microsoft warns of Exchange zero-day flaw exploited in attacks

On Thursday, Microsoft shared mitigations for a high-severity Exchange Server vulnerability exploited in attacks that allow ...

Microsoft Exchange, Windows 11 hacked on second day of Pwn2Own

During the second day of Pwn2Own Berlin 2026, competitors collected $385,750 in cash awards after exploiting 15 unique ...