Microsoft Self-Service Password Reset abused in Azure data theft attacks

A threat actor targeting Microsoft 365 and Azure production environments is stealing data in attacks that abuse legitimate ...
Microsoft

How Storm-2949 turned a compromised identity into a cloud-wide breach

Storm-2949 turned stolen credentials into a cloud-wide breach, moving from identity compromise to large-scale data theft ...
Windows Report

Microsoft Warns Storm-2949 Is Stealing Data From Microsoft 365 And Azure

Microsoft says Storm-2949 targets Microsoft 365 and Azure environments using MFA abuse, password resets, and cloud data theft ...
Microsoft

Exposing Fox Tempest: A malware-signing service operation

Fox Tempest is a financially motivated threat actor operating a malware‑signing‑as‑a‑service (MSaaS) used by other ...

EPC Group Launches Industry-First Modular Purview, Copilot Security & Legacy-to-Azure Bundle From $7,500

Purview hardening, Copilot oversharing remediation, and Exchange, SQL & file server migration to Azure. From $7,500. Almost every CIO I speak with in 2026 is fighting the same three battles at once — ...

Cybercrime service disrupted for abusing Microsoft platform to sign malware

Microsoft says it has disrupted a malware-signing-as-a-service (MSaaS) operation that abused the company's Artifact Signing ...
CSO Online

Microsoft disrupts malware code-signing service used by ransomware gangs

Cybercriminals paid between $5,000 and $9,000 to make their malware harder to detect on Windows, highlighting its ...

Mini Shai-Hulud worm injects disk wiper into Microsoft Azure PyPI package

Supply chain attacks with a Dune sci-fi saga branding continue to spread across the open-source ecosystem, with a Microsoft ...
SecurityWeek

Microsoft Patches 137 Vulnerabilities

Microsoft has released patches for 137 vulnerabilities across its products, including critical remote code execution flaws.

Terminal B Responds to Rising Demand for Managed IT Support as Texas Companies Rethink Security and Remote Work

Terminal B is helping Texas businesses strengthen cybersecurity, improve remote work support, and reduce downtime through ...
TMCnet

Leostream Updates Remote Access Platform for Microsoft Azure

Leostream Corporation today announced updates to the Microsoft Marketplace edition of the world-leading Leostream® Remote Desktop Access Platform that add even more features for customers using ...

Forcepoint details TeamPCP supply chain attack that turned LiteLLM into a credential stealer

A new report out today from cybersecurity company Forcepoint LLC’s X-Labs research team details a supply chain attack that ...