Microsoft - Security Ticks

Microsoft’s new AI agents take on phishing, patching, alert fatigue

Artificial Intelligence, Aviatrix, BlueVoyant, cybersecurity, Don't miss, Fletch, Microsoft, News, OneTrust, Tanium / SecurityTicks

Microsoft’s new AI agents take on phishing, patching, alert fatigue 2025-03-25 at 18:06 By Mirko Zorz Microsoft is rolling out a new generation of AI agents in Security Copilot, built to help with some of the most time-consuming security challenges, such as phishing, data protection, and identity management. Phishing is still one of the most […]

React to this headline:

Microsoft’s new AI agents take on phishing, patching, alert fatigue Read More »

Microsoft Adds AI Agents to Security Copilot

agentic AI, Artificial Intelligence, Copilot, Identity & Access, Microsoft, Purview, Windows Defender / SecurityTicks

Microsoft Adds AI Agents to Security Copilot 2025-03-25 at 16:20 By Ionut Arghire Microsoft has expanded the capabilities of Security Copilot with AI agents tackling data security, phishing, and identity management. The post Microsoft Adds AI Agents to Security Copilot appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Microsoft Adds AI Agents to Security Copilot Read More »

What’s Behind Google’s $32 Billion Wiz Acquisition?

Azure, cloud security, Featured, Funding/M&A, Google, Google Cloud, IPO, M&A Tracker, Microsoft, threat-intel, Wiz / SecurityTicks

What’s Behind Google’s $32 Billion Wiz Acquisition? 2025-03-19 at 17:09 By Ryan Naraine News analysis: Google positions itself to compete with Microsoft for enterprise security dollars. How does this deal affect startup ecosystem? The post What’s Behind Google’s $32 Billion Wiz Acquisition? appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

What’s Behind Google’s $32 Billion Wiz Acquisition? Read More »

Stealthy StilachiRAT steals data, may enable lateral movement

data theft, Malware, malware detection, Microsoft, News, Remote Access Trojan, Windows / SecurityTicks

Stealthy StilachiRAT steals data, may enable lateral movement 2025-03-18 at 15:48 By Zeljka Zorz While still not widely distributed, a new Windows remote access trojan (RAT) dubbed StilachiRAT is a serious threat. “[The malware] demonstrates sophisticated techniques to evade detection, persist in the target environment, and exfiltrate sensitive data,” Microsoft threat analysts have warned on

React to this headline:

Stealthy StilachiRAT steals data, may enable lateral movement Read More »

Patch Tuesday: Microsoft Patches 57 Flaws, Flags Six Active Zero-Days

critical infrastructure, Malware & Threats, Microsoft, Patch Tuesday, remote code execution, Vulnerabilities, Zero-Day / SecurityTicks

Patch Tuesday: Microsoft Patches 57 Flaws, Flags Six Active Zero-Days 2025-03-11 at 21:03 By Ryan Naraine Redmond ships major security updates with warnings that a half-dozen Windows vulnerabilities have already been exploited in the wild. The post Patch Tuesday: Microsoft Patches 57 Flaws, Flags Six Active Zero-Days appeared first on SecurityWeek. This article is an

React to this headline:

Patch Tuesday: Microsoft Patches 57 Flaws, Flags Six Active Zero-Days Read More »

March 2025 Patch Tuesday forecast: A return to normalcy

Adobe, apple, Don't miss, Expert analysis, Google, Hot stuff, Ivanti, Microsoft, Mozilla, News, opinion, Patch Tuesday, predictions / SecurityTicks

March 2025 Patch Tuesday forecast: A return to normalcy 2025-03-10 at 08:33 By Help Net Security The February Patch Tuesday updates and activity during the month marked a return to normalcy for patch management. Following the January updates addressing 100+ vulnerabilities, we saw 37 CVEs fixed in Windows 11 and 33 CVEs in Windows 10.

React to this headline:

March 2025 Patch Tuesday forecast: A return to normalcy Read More »

Microsoft Names Suspects in Lawsuit Against AI Hackers

AI, Artificial Intelligence, deepfake, Featured, generative AI, lawsuit, Microsoft, Storm-2139 / SecurityTicks

Microsoft Names Suspects in Lawsuit Against AI Hackers 2025-02-28 at 12:49 By Eduard Kovacs In a lawsuit targeting cybercriminals who abuse AI services, Microsoft has named individuals from Iran, the UK, China and Vietnam. The post Microsoft Names Suspects in Lawsuit Against AI Hackers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Microsoft Names Suspects in Lawsuit Against AI Hackers Read More »

What Microsoft’s Majorana 1 Chip Means for Quantum Decryption

Data Protection, Featured, Microsoft, quantum computing, Quantum cryptography, Quantum Decryption / SecurityTicks

What Microsoft’s Majorana 1 Chip Means for Quantum Decryption 2025-02-24 at 21:20 By Kevin Townsend The question is whether Majorana 1 advances progress toward quantum computing – or for security professionals, the arrival of computers powerful enough to break PKE. The post What Microsoft’s Majorana 1 Chip Means for Quantum Decryption appeared first on SecurityWeek.

React to this headline:

What Microsoft’s Majorana 1 Chip Means for Quantum Decryption Read More »

Massive botnet hits Microsoft 365 accounts

attacks, cybersecurity, Microsoft, Microsoft 365, News, passwords, SecurityScorecard / SecurityTicks

Massive botnet hits Microsoft 365 accounts 2025-02-24 at 15:16 By Help Net Security A recently discovered botnet of over 130,000 compromised devices is launching coordinated password-spraying attacks against Microsoft 365 (M365) accounts. Security researchers at SecurityScorecard are examining possible connections to China-affiliated threat actors, citing evidence of infrastructure linked to CDS Global Cloud and UCLOUD

React to this headline:

Massive botnet hits Microsoft 365 accounts Read More »

Microsoft Patches Exploited Power Pages Vulnerability

exploited, Featured, Microsoft, Power Pages, Vulnerabilities / SecurityTicks

Microsoft Patches Exploited Power Pages Vulnerability 2025-02-20 at 12:49 By Eduard Kovacs Microsoft has patched CVE-2025-24989, a Power Pages privilege escalation vulnerability that has been exploited in attacks. The post Microsoft Patches Exploited Power Pages Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Microsoft Patches Exploited Power Pages Vulnerability Read More »

The XCSSET info-stealing malware is back, targeting macOS users and devs

Don't miss, Hot stuff, macOS, Malware, Microsoft, News, software development, Trend Micro, Xcode / SecurityTicks

The XCSSET info-stealing malware is back, targeting macOS users and devs 2025-02-17 at 19:50 By Zeljka Zorz A new, improved variant of the XCSSET macOS malware has been spotted “in limited attacks” by Microsoft’s threat researchers. XCSSET macOS malware XCSSET in information-stealing and backdoor-injecting malware targeting Mac users. It’s usually distributed via infected Xcode projects

React to this headline:

The XCSSET info-stealing malware is back, targeting macOS users and devs Read More »

Russian State Hackers Target Organizations With Device Code Phishing

device code phishing, Microsoft, Nation-State, phishing, Russia, Storm-2372 / SecurityTicks

Russian State Hackers Target Organizations With Device Code Phishing 2025-02-17 at 14:49 By Ionut Arghire Russian hackers have been targeting government, defense, telecoms, and other organizations in a device code phishing campaign. The post Russian State Hackers Target Organizations With Device Code Phishing appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Russian State Hackers Target Organizations With Device Code Phishing Read More »

Threat actors are using legitimate Microsoft feature to compromise M365 accounts

account hijacking, cyber espionage, Don't miss, Government, government-backed attacks, Hot stuff, Microsoft, Microsoft 365, News, social engineering, spear-phishing, Volexity / SecurityTicks

Threat actors are using legitimate Microsoft feature to compromise M365 accounts 2025-02-14 at 16:23 By Zeljka Zorz Suspected Russian threat actors have been taking advantage of Microsoft Device Code Authentication to trick targets into granting them access to their Microsoft 365 (M365) accounts. “While Device Code Authentication attacks are not new, they appear to have

React to this headline:

Threat actors are using legitimate Microsoft feature to compromise M365 accounts Read More »

Sandworm APT’s initial access subgroup hits organizations accross the globe

APT, Don't miss, energy sector, Hot stuff, Microsoft, News, Russian Federation, telecommunications / SecurityTicks

Sandworm APT’s initial access subgroup hits organizations accross the globe 2025-02-13 at 15:34 By Zeljka Zorz A subgroup of Russia’s Sandworm APT has been working to achieve initial and persistent access to the IT networks of organizations working in economic sectors Russia is interested in. “In 2022, its primary focus was Ukraine, specifically targeting the

React to this headline:

Sandworm APT’s initial access subgroup hits organizations accross the globe Read More »

Russian Seashell Blizzard Hackers Gain, Maintain Access to High-Value Targets: Microsoft

APT44, Microsoft, Nation-State, Russia, Sandworm, Seashell Blizzard / SecurityTicks

Russian Seashell Blizzard Hackers Gain, Maintain Access to High-Value Targets: Microsoft 2025-02-12 at 19:10 By Ionut Arghire A subgroup of the Russia-linked Seashell Blizzard is tasked with broad initial access operations to sustain long-term persistence. The post Russian Seashell Blizzard Hackers Gain, Maintain Access to High-Value Targets: Microsoft appeared first on SecurityWeek. This article is

React to this headline:

Russian Seashell Blizzard Hackers Gain, Maintain Access to High-Value Targets: Microsoft Read More »

Microsoft fixes two actively exploited zero-days (CVE-2025-21418, CVE-2025-21391)

Action1, Don't miss, Hot stuff, Microsoft, News, Patch Tuesday, security update, Tenable, Trend Micro, Windows, Windows Server / SecurityTicks

Microsoft fixes two actively exploited zero-days (CVE-2025-21418, CVE-2025-21391) 2025-02-11 at 22:21 By Zeljka Zorz February 2025 Patch Tuesday is here, and Microsoft has delivered fixes for 56 vulnerabilities, including two zero-days – CVE-2025-21418 and CVE-2025-21391 – under active exploitation. CVE-2025-21418 and CVE-2025-21391 CVE-2025-21418 is a vulnerability in the Windows Ancillary Function Driver (AFD.sys), which interfaces

React to this headline:

Microsoft fixes two actively exploited zero-days (CVE-2025-21418, CVE-2025-21391) Read More »

Microsoft Patches ‘Wormable’ Windows Flaw and File-Deleting Zero-Day

CVE-2025-21391, CVE-2025-21418, Malware & Threats, Microsoft, Patch Tuesday, Vulnerabilities, Zero-Day / SecurityTicks

Microsoft Patches ‘Wormable’ Windows Flaw and File-Deleting Zero-Day 2025-02-11 at 22:06 By Ryan Naraine The Microsoft Patch Tuesday machine hummed loudly this month urgent fixes for a pair of already-exploited Windows zero-days. The post Microsoft Patches ‘Wormable’ Windows Flaw and File-Deleting Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Microsoft Patches ‘Wormable’ Windows Flaw and File-Deleting Zero-Day Read More »

Microsoft Expands Copilot Bug Bounty Program, Increases Payouts

AI, Artificial Intelligence, bug bounty program, Copilot, Microsoft, Vulnerabilities / SecurityTicks

Microsoft Expands Copilot Bug Bounty Program, Increases Payouts 2025-02-10 at 14:37 By Ionut Arghire Microsoft has added more Copilot consumer products to its bug bounty program and is offering higher rewards for medium-severity vulnerabilities. The post Microsoft Expands Copilot Bug Bounty Program, Increases Payouts appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Microsoft Expands Copilot Bug Bounty Program, Increases Payouts Read More »

Can AI Early Warning Systems Reboot the Threat Intel Industry?

APT, Artificial Intelligence, China, Google, Iran, Malware & Threats, Microsoft, North Korea, OpenAI, Threat Intelligence / SecurityTicks

Can AI Early Warning Systems Reboot the Threat Intel Industry? 2025-02-10 at 13:02 By Ryan Naraine News analysis: The big AI platforms are emerging as frontline early warning systems, detecting nation-state hackers at the outset of their campaigns. Can this help save the threat intel industry? The post Can AI Early Warning Systems Reboot the

React to this headline:

Can AI Early Warning Systems Reboot the Threat Intel Industry? Read More »

February 2025 Patch Tuesday forecast: New directions for AI development

Don't miss, Expert analysis, Expert corner, Hot stuff, Ivanti, Microsoft, News, Patch Tuesday, predictions / SecurityTicks

February 2025 Patch Tuesday forecast: New directions for AI development 2025-02-10 at 08:02 By Help Net Security The new year has started with a whirlwind of activity, and one of the hottest topics in the news is the increasing emphasis on AI. DeepSeek ad Stargate DeepSeek took the world by storm as millions of copies

React to this headline:

February 2025 Patch Tuesday forecast: New directions for AI development Read More »