Insider Threats
The latest Insider Threats coverage — news, analysis, and updates from the WindowsNews.AI desk.
Sohaib Akhter Convicted: Offboarding Gaps, Plaintext Passwords, and AI Prompt Risks Exposed
A federal jury in Alexandria, Virginia convicted former federal contractor Sohaib Akhter on May 7, 2026 for his role in deleting roughly 96 U.S. government records. Prosecutors said Sohaib and his...
Top 10 Insider Threat Detection Tools for 2025: Microsoft Sentinel & Windows Security Integration
As organizations face increasingly sophisticated security challenges, insider threat detection has become a critical component of enterprise security strategies. With hybrid work environments and...
Insider Threat Exposes Critical Windows Security Gaps in Contractor Access & Backup Failures
The chilling case of a federal contractor allegedly deleting scores of government databases within minutes of being terminated exposes fundamental security vulnerabilities that plague Windows...
Insider Threat Case Exposes Critical Privileged Access Risks in Government IT Systems
The Justice Department's recent insider-threat prosecution serves as a stark warning for IT managers, security teams, and anyone responsible for protecting sensitive federal data. This case,...
Ex-L3Harris Cyber Executive Charged with Stealing Trade Secrets for Russia
In a stunning case that highlights the growing threat of insider cyber espionage, federal prosecutors have charged a former L3Harris executive with stealing eight critical trade secrets and...
X Bribery Ring Exposed: How Paid Middlemen Target Platform Moderation Systems
A sophisticated bribery operation targeting X's moderation system has been uncovered, revealing how paid middlemen attempted to corrupt platform employees to reinstate accounts suspended for running...
Pentagon Axes China-Based Microsoft Engineers from DoD Cloud, Orders Audit
Defense Secretary Pete Hegseth has ordered an immediate halt to Microsoft’s use of China-based engineers for all Department of Defense cloud support, marking a dramatic escalation in the U.S....
Schneider Electric Patches Saitel DR RTU Flaw CVE-2025-8453 — DP RTU Fix Still Pending
Schneider Electric has shipped a firmware remedy for its Saitel DR Remote Terminal Units to plug a privilege management hole tracked as CVE-2025-8453, while a corresponding fix for the Saitel DP line...
Microsoft Silently Patches Copilot Audit Blind Spot That Allowed Silent Data Exfiltration
Microsoft quietly fixed a critical gap in Microsoft 365 Copilot’s audit logging in mid‑August 2025 after researchers proved that a simple prompt tweak could make the AI assistant summarize...
Microsoft Quietly Patches Copilot Flaw That Let Insiders Access Files Without Audit Traces
A security researcher discovered that a simple prompt technique could make Microsoft 365 Copilot summarize sensitive corporate files without leaving the required Purview audit records. Microsoft...
Copilot Audit Bypass: Microsoft's Silent Patch Leaves Log Integrity in Question
A routine prompt tweak—adding “do not include a link”—is all it takes to make Microsoft Copilot quietly access and summarize sensitive files without generating the audit record that...
Microsoft Quietly Patches Copilot Audit-Log Bypass, Keeps Customers in the Dark
Security researchers have uncovered a critical blind spot in Microsoft’s Purview audit logging for Copilot: certain prompts can retrieve sensitive file contents without leaving any trace in audit...