Microsoft fixes AutoGen Studio flaw that enabled code execution

A vulnerability chain dubbed AutoJack in Microsoft's AutoGen Studio interface for prototyping AI agents could let attackers ...
The Hacker News

Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js Implant

Microsoft says hotel phishing emails are using Calendly links and photo ZIP files to drop the TonRAT Node.js implant on front ...

Microsoft launches 'world's most powerful supercomputer' in Mount Pleasant

Microsoft Corp. has completed construction on its first data center in Mount Pleasant, and "the world's most powerful ...

'Got laid off overnight': Software engineer reveals how a 9 PM Teams call ended jobs for 150 engineers

haring the experience on the social media platform Reddit, the employee said the layoffs were announced during an unexpected ...

Miasma campaign poisons 20-plus npm packages, hunts for developer secrets

Microsoft says latest attack targets Leo Platform and RStreams packages, harvesting creds and going after more maintainers ...

Chevron finalizes power deal with Microsoft for West Texas data center and power plant

Chevron officially signed a deal with Microsoft to create one of the largest power plants in Texas. The project is expected ...
The Hacker News

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.
The Next Web

Microsoft finds USB worm that steals cryptocurrency through clipboard hijacking and Tor

Microsoft discovered a self-spreading USB worm active since February that monitors clipboards for crypto wallets and routes stolen data through Tor.
The Caledonian-Record

FPT Expands Strategic Collaboration with Microsoft to Advance AI Frontier Innovation Across Asia

FPT Corporation today announced an expanded strategic collaboration with Microsoft aimed at accelerating enterprise AI ...
Infosecurity Magazine

Microsoft Attributes Mastra AI Supply Chain Attack to North Korea

North Korean threat actor Sapphire Sleet has been linked to a supply chain attack targeting Mastra, according to Microsoft ...
Infosecurity Magazine

Lookalike npm Package Hides a Multi-Stage Windows RAT

A malicious npm package has been caught impersonating one of the JavaScript ecosystem's most widely used build tools. The ...
The Caledonian-Record

Stagwell (STGW) and Microsoft Advertising Become First to Integrate Copilot Directly Into Live Media Campaigns

The integration of Microsoft MCP connects Copilot directly to live campaigns, moving AI from pilot to production ...