Ultimi Aggiornamenti di Cybersecurity

Storm-2372 conducts device code phishing campaign

Executive summary Today we’re sharing that Microsoft discovered cyberattacks being launched by a group we call Storm-2372, who we assess[…]

Leggi di più
Securing DeepSeek and other AI systems with Microsoft Security

A successful AI transformation starts with a strong security foundation. With a rapid increase in AI development and adoption, organizations[…]

Leggi di più
The BadPilot campaign: Seashell Blizzard subgroup conducts multiyear global access operation

Microsoft is publishing for the first time our research into a subgroup within the Russian state actor Seashell Blizzard and[…]

Leggi di più
Build a stronger security strategy with proactive and reactive incident response: Cyberattack Series

There are countless statistics about cybercrime and one of the most impactful is that for threat actors. Their profits continue[…]

Leggi di più
Code injection attacks using publicly disclosed ASP.NET machine keys

In December 2024, Microsoft Threat Intelligence observed limited activity by an unattributed threat actor using a publicly available, static ASP.NET[…]

Leggi di più
Hear from Microsoft Security experts at these top cybersecurity events in 2025

Inspiration can spark in an instant when you’re at a conference. Perhaps you discover a new tool during a keynote[…]

Leggi di più
3 priorities for adopting proactive identity and access security in 2025

If 2024 taught us anything, it’s that a proactive, no-compromises approach to security is essential for 2025 and beyond. Nation-states[…]

Leggi di più
Fast-track generative AI security with Microsoft Purview

As a data security global black belt, I help organizations secure AI solutions. They are concerned about data oversharing, data[…]

Leggi di più
2025 release wave 1 plans for Microsoft Dynamics 365, Microsoft Power Platform, and Role-based Copilot offerings

We’ve published the 2025 release wave 1 plans for Microsoft Dynamics 365, Microsoft Power Platform, and Role-based Copilot offerings. These[…]

Leggi di più
New Star Blizzard spear-phishing campaign targets WhatsApp accounts

In mid-November 2024, Microsoft Threat Intelligence observed the Russian threat actor we track as Star Blizzard sending their typical targets[…]

Leggi di più
Innovating in line with the European Union’s AI Act 

As our Microsoft AI Tour reached Brussels, Paris, and Berlin toward the end of last year, we met with European organizations that[…]

Leggi di più
Analyzing CVE-2024-44243, a macOS System Integrity Protection bypass through kernel extensions

Microsoft Threat Intelligence discovered a new macOS vulnerability that could allow attackers to bypass Apple’s System Integrity Protection (SIP) in[…]

Leggi di più