Tag: Microsoft

Exchange Server CVE-2026-42897 Exploited Through Crafted OWA Email

Microsoft says Exchange Server CVE-2026-42897 has exploitation detected. The current protection path…

Stephanie Adlam

KongTuke Uses Microsoft Teams Help-Desk Lures to Drop ModeloRAT

KongTuke moved from web-based ClickFix lures into external Microsoft Teams chats, using…

Stephanie Adlam

YellowKey BitLocker Bypass PoC Targets TPM-Only Windows 11 Drives

A public YellowKey proof-of-concept claims a BitLocker bypass path on Windows 11…

Stephanie Adlam

Microsoft Word Preview Pane RCE Bugs Put Outlook Users at Risk

Microsoft patched two critical Word RCE bugs where the Preview Pane is…

Stephanie Adlam

Operation HookedWing Phishing Hit 500+ Organizations

Operation HookedWing used GitHub Pages, compromised servers, and staged redirects to target…

Stephanie Adlam

Microsoft Account Locked: Recovery Steps and Scam Checks

If your Microsoft account is locked, use official Microsoft recovery tools, verify…

Stephanie Adlam

Microsoft AiTM Phishing Targeted 35,000 Users

Microsoft says a code-of-conduct phishing campaign targeted 35,000 users with PDF lures,…

Stephanie Adlam

CloudZ Malware Abuses Microsoft Phone Link to Steal OTPs

Cisco Talos says CloudZ RAT and its Pheno plugin target Microsoft Phone…

Stephanie Adlam

MuddyWater Uses Microsoft Teams Phishing in Chaos Ransomware Masquerade

Rapid7 says MuddyWater used Microsoft Teams social engineering, remote tools, stolen credentials,…

Stephanie Adlam

CVE-2025-24071 Windows File Explorer Spoofing Vulnerability Uncovered, Patch Now

Microsoft uncovered the information about a critical vulnerability in Windows File Explorer,…

Stephanie Adlam

Microsoft Pop-up Scam

Seeing a Microsoft Account Locked browser pop-up with a phone number? It…

Stephanie Adlam

Windows Defender Security Center Scam: Remove the Fake Alert

Windows Defender Security Center scam pop-ups imitate Microsoft alerts and push fake…

Daniel Zimmermann

AI Assistant

Hello! 👋 How can I help you today?