Typosquatted npm packages used to steal cloud and CI/CD secrets Microsoft has identified an active supply chain attack targeting the npm package ecosystem. On... 2026-5-29 03:4:52 | 阅读: 37 | 收藏 | Microsoft Security Blog - www.microsoft.com opensearch bun microsoft defender payload

The Gentlemen ransomware: Dissecting a self-propagating Go encryptor Ransomware that combines robust encryption with rapid lateral movement significantly increases... 2026-5-28 15:0:0 | 阅读: 19 | 收藏 | Microsoft Security Blog - www.microsoft.com ransomware encryption microsoft gentlemen defender

From poisoned search results to GPU mining: A cryptojacking campaign abusing ScreenConnect and Microsoft .NET utilities Microsoft Defender Experts identified an active cryptojacking campaign in which malicious downl... 2026-5-26 21:35:34 | 阅读: 26 | 收藏 | Microsoft Security Blog - www.microsoft.com microsoft malicious defender windows

Microsoft recognized as a Leader in The Forrester Wave™ for Workforce Identity Security Platforms Identity is the backbone of modern cybersecurity. Every access decision carries risk, across employ... 2026-5-22 17:0:0 | 阅读: 29 | 收藏 | Microsoft Security Blog - www.microsoft.com microsoft security forrester identities signals

From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5 and Confluence A growing trend in modern intrusions is the compromise of internet-facing edge appliances such... 2026-5-22 16:53:39 | 阅读: 35 | 收藏 | Microsoft Security Blog - www.microsoft.com network microsoft security defender

Microsoft Security success stories: How St. Luke’s and ManpowerGroup are securing AI foundations AI is reshaping how work gets done—and how risks emerge across cloud, data, identity, and more. Man... 2026-5-22 16:0:0 | 阅读: 22 | 收藏 | Microsoft Security Blog - www.microsoft.com security microsoft cloud luke governance

What’s new in Microsoft Security: May 2026 At Microsoft, security innovations are purpose-built to help every organization protect end-to-end... 2026-5-21 16:0:0 | 阅读: 27 | 收藏 | Microsoft Security Blog - www.microsoft.com microsoft security claude purview agents

Mini Shai Hulud: Compromised @antv npm packages enable CI/CD credential theft Microsoft has identified an active supply chain attack targeting the @antv node package manager (np... 2026-5-20 17:48:44 | 阅读: 27 | 收藏 | Microsoft Security Blog - www.microsoft.com microsoft antv defender github runner

Securing the gaming culture of cultures The Deputy CISO blog series is where Microsoft Deputy Chief Information Security Officers (CISOs) s... 2026-5-20 16:0:0 | 阅读: 20 | 收藏 | Microsoft Security Blog - www.microsoft.com security microsoft studios creative cloud

Introducing RAMPART and Clarity: Open source tools to bring safety into Agent development workflow The AI systems shipping inside enterprises today are fundamentally different from the ones we w... 2026-5-20 15:0:0 | 阅读: 27 | 收藏 | Microsoft Security Blog - www.microsoft.com clarity rampart microsoft teaming adversarial

Exposing Fox Tempest: A malware-signing service operation We are currently experiencing high demand. Please wait and try again later... 2026-5-19 15:7:1 | 阅读: 20 | 收藏 | Microsoft Security Blog - www.microsoft.com ncsi microsoft beacon routed

How Storm-2949 turned a compromised identity into a cloud-wide breach Microsoft Threat Intelligence recently uncovered a methodical, sophisticated, and multi-layered... 2026-5-18 22:42:50 | 阅读: 30 | 收藏 | Microsoft Security Blog - www.microsoft.com microsoft defender cloud security

How to better protect your growing business in an AI-powered world AI is rapidly reshaping how work gets done in companies and organizations. In celebrating National... 2026-5-18 16:0:0 | 阅读: 22 | 收藏 | Microsoft Security Blog - www.microsoft.com security microsoft ransomware

Defense in depth for autonomous AI agents Designing Secure Autonomous AI Agents with Defense in DepthAI agents are moving beyond assistan... 2026-5-14 16:0:0 | 阅读: 21 | 收藏 | Microsoft Security Blog - www.microsoft.com agents agentic security autonomy

Kazuar: Anatomy of a nation-state botnet Kazuar, a sophisticated malware family attributed to the Russian state actor Secret Blizzard, h... 2026-5-14 15:0:0 | 阅读: 28 | 收藏 | Microsoft Security Blog - www.microsoft.com microsoft defender c2 kazuar security

When configuration becomes a vulnerability: Exploitable misconfigurations in AI apps AI and agentic application deployments on cloud-native platforms are increasing, and they often... 2026-5-14 14:20:55 | 阅读: 35 | 收藏 | Microsoft Security Blog - www.microsoft.com microsoft cloud kubernetes agents

Accelerating detection engineering using AI-assisted synthetic attack logs generation Logs and telemetry are the foundation of modern cybersecurity. They enable threat detection, in... 2026-5-12 22:53:9 | 阅读: 29 | 收藏 | Microsoft Security Blog - www.microsoft.com security datasets synthetic microsoft agentic

Defense at AI speed: Microsoft’s new multi-model agentic security system tops leading industry benchmark Today Microsoft announced a major step forward in AI-powered cyber defense: our new agentic sec... 2026-5-12 22:0:0 | 阅读: 34 | 收藏 | Microsoft Security Blog - www.microsoft.com security 2026 microsoft harness mdash

Defending consumer web properties against modern DDoS attacks If you own, create, or maintain online services and web portals, you’re probably aware of the drama... 2026-5-12 16:0:0 | 阅读: 24 | 收藏 | Microsoft Security Blog - www.microsoft.com microsoft network security resilience

Undermining the trust boundary: Investigating a stealthy intrusion through third-party compromise In recent years, many sophisticated intrusions have increasingly avoided using noisy exploits,... 2026-5-12 15:0:0 | 阅读: 27 | 收藏 | Microsoft Security Blog - www.microsoft.com microsoft security network malicious defender