The bug is in one of the drivers in Windows and is under active exploitation
The FSB-affiliated group has taken over other APT teams' C2 servers and tools
The RomCom attackers used two zero days to target companies worldwide
Microsoft is launching a new addition to its bug bounty program, along with a new, invitation-only hacking contest
Microsoft has fixed an important-severity EoP bug in Windows Task Scheduler (CVE-2024-49039), which is being exploited in attacks.
Microsoft researchers have identified a new spear-phishing campaign by Russian threat actor Midnight Blizzard.
Attackers are exploiting a Microsoft SharePoint vulnerability that the company disclosed–and patched–in July.