RSS Reader for Computer Security Articles
Credit to Author: Elliot Volkman| Date: Mon, 06 Oct 2025 21:00:00 +0000
Incident response is never orderly. Threat actors don’t wait. Environments are compromised. Data is missing. Confidence is shaken. But for Microsoft’s Incident Response (IR) team, that chaos is exactly where the work begins.
The post Inside Microsoft Threat Intelligence: Calm in the chaos appeared first on Microsoft Security Blog.
Read MoreCredit to Author: Microsoft Threat Intelligence| Date: Mon, 06 Oct 2025 17:00:00 +0000
Storm-1175, a financially motivated actor known for deploying Medusa ransomware and exploiting public-facing applications for initial access, was observed exploiting the deserialization vulnerability in GoAnywhere MFT’s License Servlet, tracked as CVE-2025-10035. We are publishing this blog post to increase awareness of this threat and to share end-to-end protection coverage details across Microsoft Defender.
The post Investigating active exploitation of CVE-2025-10035 GoAnywhere Managed File Transfer vulnerability appeared first on Microsoft Security Blog.
Read More
Credit to Author: Lily Hay Newman| Date: Mon, 06 Oct 2025 10:00:00 +0000
As developers increasingly lean on AI-generated code to build out their software—as they have with open source in the past—they risk introducing critical security failures along the way.
Read More
Credit to Author: Matt Burgess, Andy Greenberg, Andrew Couts| Date: Sat, 04 Oct 2025 10:30:00 +0000
Plus: China sentences scam bosses to death, Europe is ramping up its plans to build a “drone wall” to protect against Russian airspace violations, and more.
Read More
Credit to Author: Dell Cameron| Date: Fri, 03 Oct 2025 13:21:05 +0000
Documents show ICE plans to hire dozens of contractors to scan X, Facebook, TikTok, and other platforms to target people for deportation.
Read MoreCredit to Author: Rob Lefferts| Date: Thu, 02 Oct 2025 17:00:00 +0000
Microsoft has been named a Leader in IDC’s inaugural category for Worldwide Extended Detection and Response (XDR) Software for 2025, recognized for its deep integration, intelligent automation, and unified security operations solutions.
The post Microsoft named a Leader in the IDC MarketScape for XDR appeared first on Microsoft Security Blog.
Read MoreCredit to Author: Vasu Jakkal| Date: Wed, 01 Oct 2025 16:00:00 +0000
At Microsoft, we believe that cybersecurity is as much about people as it is about technology. Explore some of our resources for Cybersecurity Awareness Month to stay safe online.
The post Cybersecurity Awareness Month: Security starts with you appeared first on Microsoft Security Blog.
Read MoreCredit to Author: Vasu Jakkal| Date: Tue, 30 Sep 2025 13:00:00 +0000
Microsoft Sentinel is expanding into an agentic platform with general availability of the Sentinel data lake, and the public preview of Sentinel graph and Sentinel Model Context Protocol (MCP) server.
The post Empowering defenders in the era of agentic AI with Microsoft Sentinel appeared first on Microsoft Security Blog.
Read More