Cybersecurity
The latest Cybersecurity coverage — news, analysis, and updates from the WindowsNews.AI desk.
Storm-2372 device-code phishing bypasses MFA in Microsoft Teams attacks
Microsoft Teams has become the latest target in a sophisticated phishing campaign dubbed Storm-2372, putting millions of users at risk. Cybersecurity researchers have uncovered a new device code...
Microsoft Entra ID Protected Actions: A Game-Changer for Enterprise Cybersecurity
Microsoft has taken a significant leap in enterprise security with the introduction of Protected Actions in Entra ID (formerly Azure AD). This innovative feature represents a critical evolution in...
Storm-2372 Phishing Bypasses MFA: Device Code Attack Exposes Windows Users
The Storm-2372 phishing campaign has emerged as a sophisticated threat targeting Windows users, exploiting Device Code Authentication vulnerabilities to bypass multi-factor authentication (MFA). This...
Device Code Phishing: How Russian Spies Exploit Microsoft 365 via OAuth Protocols
Russian state-sponsored hackers have developed a sophisticated new phishing technique that bypasses traditional security measures by exploiting Microsoft 365's device code authentication flow. Known...
CVE-2025-0995: Critical Chromium Browser Vulnerability Threatens Windows Users
CVE-2025-0995: Key Vulnerability in Chromium Browsers Explained A newly discovered zero-day vulnerability (CVE-2025-0995) in Chromium-based browsers poses significant risks to Windows users...
February Patch Tuesday: 63 Fixes, 2 Zero-Days Exploited in the Wild
February Patch Tuesday: 63 Updates & Urgent Zero-Day Vulnerabilities Microsoft’s February Patch Tuesday rollout has made a significant impact in the realm of cybersecurity, with a comprehensive...
February 2025 Patch Tuesday: 63 Critical Fixes for Active Zero-Day Threats
February 2025 Patch Tuesday: Critical Windows & Office Updates Explained Microsoft’s February 2025 Patch Tuesday has arrived with a significant security update package, rolling out a total of 63...
Microsoft 365 Device Code Phishing: How Storm-2372 Exploits Authentication
In a sophisticated evolution of cyber threats, security researchers have uncovered a spear-phishing campaign that weaponizes Microsoft's legitimate device code authentication process to compromise...
Steam Data Shows 40% of Gamers Stick with Windows 10 as October 2025 Support Deadline Looms
Introduction In an era where technology advances rapidly and new software versions are frequently promoted, an intriguing trend has emerged in the PC gaming community. According to Valve's Steam...
DomainTools and Microsoft Copilot: Revolutionizing Proactive Cybersecurity for Windows Users
The relentless evolution of cyber threats demands equally dynamic defenses, and the integration of DomainTools' threat intelligence into Microsoft Copilot represents a pivotal shift in how Windows...
DomainTools Enhances Windows Security Through Integration with Microsoft Copilot for Security
Introduction In a groundbreaking development within the cybersecurity space, DomainTools, a renowned leader in domain and DNS-based threat intelligence, has officially joined the Microsoft Copilot...