Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign Microsoft Threat Intelligence identified a large-scale npm supply chain attack affecting 32 mal... 2026-6-3 04:45:6 | 阅读: 21 | 收藏 | Microsoft Security Blog - www.microsoft.com bun microsoft defender cloud github

Microsoft Build 2026: Securing code, agents, and models across the development lifecycle Today, developers and security teams are caught in growing tension. AI is accelerating developm... 2026-6-2 17:15:18 | 阅读: 11 | 收藏 | Microsoft Security Blog - www.microsoft.com security agents microsoft developers mdash

Malicious npm packages abuse dependency confusion to profile developer environments Microsoft Threat Intelligence has uncovered an active supply chain attack involving malicious n... 2026-5-30 00:6:20 | 阅读: 41 | 收藏 | Microsoft Security Blog - www.microsoft.com payload microsoft rwb defender

Microsoft is named a Leader in the 2026 Gartner® Magic Quadrant™ for Endpoint Protection As threats become more coordinated and faster to execute, endpoint protection has become the provin... 2026-5-29 16:0:0 | 阅读: 16 | 收藏 | Microsoft Security Blog - www.microsoft.com defender microsoft security threats quadrant

Typosquatted npm packages used to steal cloud and CI/CD secrets Microsoft has identified an active supply chain attack targeting the npm package ecosystem. On... 2026-5-29 03:4:52 | 阅读: 27 | 收藏 | Microsoft Security Blog - www.microsoft.com opensearch bun microsoft defender payload

The Gentlemen ransomware: Dissecting a self-propagating Go encryptor Ransomware that combines robust encryption with rapid lateral movement significantly increases... 2026-5-28 15:0:0 | 阅读: 8 | 收藏 | Microsoft Security Blog - www.microsoft.com ransomware encryption microsoft gentlemen defender

From poisoned search results to GPU mining: A cryptojacking campaign abusing ScreenConnect and Microsoft .NET utilities Microsoft Defender Experts identified an active cryptojacking campaign in which malicious downl... 2026-5-26 21:35:34 | 阅读: 17 | 收藏 | Microsoft Security Blog - www.microsoft.com microsoft malicious defender windows

Microsoft recognized as a Leader in The Forrester Wave™ for Workforce Identity Security Platforms Identity is the backbone of modern cybersecurity. Every access decision carries risk, across employ... 2026-5-22 17:0:0 | 阅读: 19 | 收藏 | Microsoft Security Blog - www.microsoft.com microsoft security forrester identities signals

From edge appliance to enterprise compromise: Multi-stage Linux intrusion via F5 and Confluence A growing trend in modern intrusions is the compromise of internet-facing edge appliances such... 2026-5-22 16:53:39 | 阅读: 27 | 收藏 | Microsoft Security Blog - www.microsoft.com network microsoft security defender

Microsoft Security success stories: How St. Luke’s and ManpowerGroup are securing AI foundations AI is reshaping how work gets done—and how risks emerge across cloud, data, identity, and more. Man... 2026-5-22 16:0:0 | 阅读: 16 | 收藏 | Microsoft Security Blog - www.microsoft.com security microsoft cloud luke governance

What’s new in Microsoft Security: May 2026 At Microsoft, security innovations are purpose-built to help every organization protect end-to-end... 2026-5-21 16:0:0 | 阅读: 20 | 收藏 | Microsoft Security Blog - www.microsoft.com microsoft security claude purview agents

Mini Shai Hulud: Compromised @antv npm packages enable CI/CD credential theft Microsoft has identified an active supply chain attack targeting the @antv node package manager (np... 2026-5-20 17:48:44 | 阅读: 18 | 收藏 | Microsoft Security Blog - www.microsoft.com microsoft antv defender github runner

Securing the gaming culture of cultures The Deputy CISO blog series is where Microsoft Deputy Chief Information Security Officers (CISOs) s... 2026-5-20 16:0:0 | 阅读: 16 | 收藏 | Microsoft Security Blog - www.microsoft.com security microsoft studios creative cloud

Introducing RAMPART and Clarity: Open source tools to bring safety into Agent development workflow The AI systems shipping inside enterprises today are fundamentally different from the ones we w... 2026-5-20 15:0:0 | 阅读: 16 | 收藏 | Microsoft Security Blog - www.microsoft.com clarity rampart microsoft teaming adversarial

Exposing Fox Tempest: A malware-signing service operation We are currently experiencing high demand. Please wait and try again later... 2026-5-19 15:7:1 | 阅读: 13 | 收藏 | Microsoft Security Blog - www.microsoft.com ncsi microsoft beacon routed

How Storm-2949 turned a compromised identity into a cloud-wide breach Microsoft Threat Intelligence recently uncovered a methodical, sophisticated, and multi-layered... 2026-5-18 22:42:50 | 阅读: 23 | 收藏 | Microsoft Security Blog - www.microsoft.com microsoft defender cloud security

How to better protect your growing business in an AI-powered world AI is rapidly reshaping how work gets done in companies and organizations. In celebrating National... 2026-5-18 16:0:0 | 阅读: 17 | 收藏 | Microsoft Security Blog - www.microsoft.com security microsoft ransomware

Defense in depth for autonomous AI agents Designing Secure Autonomous AI Agents with Defense in DepthAI agents are moving beyond assistan... 2026-5-14 16:0:0 | 阅读: 17 | 收藏 | Microsoft Security Blog - www.microsoft.com agents agentic security autonomy

Kazuar: Anatomy of a nation-state botnet Kazuar, a sophisticated malware family attributed to the Russian state actor Secret Blizzard, h... 2026-5-14 15:0:0 | 阅读: 27 | 收藏 | Microsoft Security Blog - www.microsoft.com microsoft defender c2 kazuar security

When configuration becomes a vulnerability: Exploitable misconfigurations in AI apps AI and agentic application deployments on cloud-native platforms are increasing, and they often... 2026-5-14 14:20:55 | 阅读: 28 | 收藏 | Microsoft Security Blog - www.microsoft.com microsoft cloud kubernetes agents