Security News

Microsoft releases new, faster Teams app for Windows and Mac PCs
2023-10-05 16:00

A new, redesigned, and faster Microsoft Teams application is generally available for all Windows and macOS users starting today. As revealed when the new Teams was made available as a preview release in March, the new client will launch three times faster, enabling users to switch between chats and channels up to 1.7 times faster than the Classic Teams app.

BYOD should stand for bring your own disaster, according to Microsoft ransomware data
2023-10-05 13:03

Microsoft research says that 80-90 percent of ransomware attacks over the past year originated from unmanaged devices. The threat BYOD presents is compounded by the steep rise in overall ransomware incidents this year; Microsoft says human-operated ransomware attacks are up by more than 200 percent since September 2022.

Microsoft: Hackers target Azure cloud VMs via breached SQL servers
2023-10-04 14:53

Hackers have been observed trying to breach cloud environments through Microsoft SQL Servers vulnerable to SQL injection. The attacks Microsoft observed start with exploiting an SQL injection vulnerability in an application in the target's environment.

Microsoft Warns of Cyber Attacks Attempting to Breach Cloud via SQL Server Instance
2023-10-04 10:18

Microsoft has detailed a new campaign in which attackers unsuccessfully attempted to move laterally to a cloud environment through a SQL Server instance. "The attackers initially exploited a SQL...

Microsoft now lets you play a game during Windows 11 installs
2023-10-03 18:59

Users are now encouraged to take a break and indulge in a surfing game while waiting for their systems to update, as first spotted by The Verge while installing Windows 11 on a Surface Laptop Studio 2. Initially launched in May 2020 when bundled with the Microsoft Edge web browser, the Surf game is a modern rendition of the classic SkiFree game, part of Microsoft's Entertainment Pack 3 for Windows 3.0, released in October 1991.

Microsoft Edge, Teams get fixes for zero-days in open-source libraries
2023-10-03 14:54

Microsoft released emergency security updates for Edge, Teams, and Skype to patch two zero-day vulnerabilities in open-source libraries used by the three products. The libwebp library is used by a large number of projects for encoding and decoding images in the WebP format, including modern web browsers like Safari, Mozilla Firefox, Microsoft Edge, Opera, and the native Android web browsers, as well as popular apps like 1Password and Signal.

EvilProxy uses indeed.com open redirect for Microsoft 365 phishing
2023-10-03 13:00

A recently uncovered phishing campaign is targeting Microsoft 365 accounts of key executives in U.S.-based organizations by abusing open redirects from the Indeed employment website for job listings. In August 2023, Proofpoint warned of another EvilProxy campaign, which distributed approximately 120,000 phishing emails to hundreds of organizations, targeting their employees' Microsoft 365 accounts.

Microsoft Defender no longer flags Tor Browser as malware
2023-10-02 22:33

Recent versions of the TorBrowser, specifically because of the updated tor. Microsoft stated, "We've reviewed the submitted files and have determined that they do not fit our definitions of malware or unwanted applications. As such, we've removed the detection."

Microsoft fixes Outlook prompts to reopen closed windows
2023-09-30 14:09

Microsoft has resolved a known issue that caused Outlook Desktop to unexpectedly prompt users to reopen previously closed windows. On affected systems, users of Outlook for Microsoft 365 were encountering dialogs with prompts like "Outlook closed while you had items open. Reopen those items from your last session?".

Microsoft Bing Chat pushes malware via bad ads
2023-09-29 20:54

Microsoft introduced its Bing Chat AI search assistant in February and a month later began serving ads alongside it to help cover costs. Security outfit Malwarebytes said on Thursday it has identified malvertising - harmful ads - distributed via Bing Chat conversations.