Browsing Category
Microsoft
196 posts
Legacy Login in Microsoft Entra ID Exploited to Breach Cloud Accounts
A flaw in Microsoft Entra ID’s legacy login allowed attackers to bypass MFA, targeting admin accounts across finance,…
Microsoft Entra ID Lockouts After MACE App Flags Legit Users
Was your Microsoft Entra ID account locked? Find out about the recent widespread lockouts caused by the new…
11 Nation-State Hackers Exploit Unpatched Windows Flaw Since 2017
Microsoft refuses to patch serious Windows shortcut vulnerability abused in global espionage campaigns!
New Microsoft 365 Phishing Scam Tricks Users Into Calling Fake Support
New Microsoft 365 phishing scam exploits fake support numbers to steal credentials. Learn how attackers bypass security and how to stay protected.
March 2025 Patch Tuesday: Microsoft Fixes 57 Vulnerabilities, 7 Zero-Days
Microsoft's March 2025 Patch Tuesday fixes six actively exploited zero-day vulnerabilities, including critical RCE and privilege escalation flaws. Learn how these vulnerabilities impact Windows systems and why immediate patching is essential.
Microsoft Uncovers ‘BadPilot’ Campaign as Seashell Blizzard Targets US and UK
Russian GRU-linked hackers exploit known software flaws to breach critical networks worldwide, targeting the United States and the…
Patch Tuesday: Microsoft Fixes 63 Bugs with 2 Zero-Days
Microsoft’s February Patch Tuesday addresses 63 security vulnerabilities, including two actively exploited zero-days. Update your systems now to…
ASP.NET Vulnerability Lets Hackers Hijack Servers, Inject Malicious Code
Microsoft cybersecurity experts have identified a vulnerability flaw affecting ASP.NET applications, putting thousands of web servers at risk.…
Hackers Using Fake Microsoft ADFS Login Pages to Steal Credentials
A global phishing campaign is actively exploiting a legacy Microsoft authentication system to steal user credentials and bypass multi-factor authentication (MFA), targeting over 150 organizations.
AuthQuake Flaw Allowed MFA Bypass Across Azure, Office 365 Accounts
SUMMARY Cybersecurity researchers at Oasis Security have identified a vulnerability in Microsoft’s Multi-Factor Authentication (MFA), known as AuthQuake,…