Microsoft 365 Security
The latest Microsoft 365 Security coverage — news, analysis, and updates from the WindowsNews.AI desk.
Netwrix 1Secure Debuts AI-Powered DSPM to Tame Unstructured Data Risk in M365
The relentless migration to cloud platforms has reshaped the modern workplace, with Microsoft 365 emerging as the backbone for countless organizations. Yet, this shift brings a paradox: while...
Microsoft 365 AI & collaboration tools: 5 critical steps to stop data leaks now
Introduction In the modern digital workplace, Microsoft 365 has emerged as a cornerstone for collaboration and productivity, integrating tools like Outlook, Teams, SharePoint, OneDrive, and the newly...
Russian Hackers Exploit OAuth 2.0 in Microsoft 365 'Midnight Blizzard' Attack
The digital battlegrounds of cloud security witnessed a sophisticated escalation this summer as Russian state-sponsored hackers orchestrated a novel attack exploiting inherent weaknesses in OAuth 2.0...
Russian APT group APT28 weaponizes OAuth 2.0 against Ukraine, NGOs
In a chilling reminder of the evolving landscape of cyber warfare, Russian state-sponsored hackers have been exploiting vulnerabilities in OAuth 2.0 to conduct sophisticated cyber espionage campaigns...
OAuth Phishing Attacks on Microsoft 365: Risks and Cloud Security Strategies
In an era where digital threats evolve faster than the tools designed to combat them, Microsoft 365 users and IT administrators face a sophisticated new danger: OAuth phishing attacks targeting...
Messaging Apps as Cyberattack Vectors: Protecting Microsoft 365 Credentials
In an era where remote work and digital communication dominate the corporate landscape, hackers have found a new gateway to infiltrate systems and steal sensitive information: messaging apps....
Exploiting Trust: How Russian Hackers Hijacked Microsoft 365 Accounts via OAuth 2.0 in 2023
Introduction In 2023, cybersecurity researchers uncovered a series of sophisticated attacks orchestrated by Russian state-sponsored hackers targeting Microsoft 365 accounts. These adversaries...
Russian Cyber-Espionage Targets Ukrainian NGOs with OAuth Attacks on Microsoft 365
In the ever-evolving landscape of cyber warfare, a disturbing trend has emerged targeting Ukrainian non-governmental organizations (NGOs) through sophisticated OAuth attacks as part of Russian...
Russian Hackers Exploit OAuth to Target Ukraine NGOs via Microsoft 365
In a chilling reminder of the persistent dangers lurking in the digital realm, Russian threat actors have been reported to exploit OAuth vulnerabilities to compromise Microsoft 365 accounts,...
Securing Microsoft 365: Combatting Social Engineering and OAuth Threats in 2023
In an era where digital transformation has become the backbone of business operations, Microsoft 365 stands as a cornerstone for millions of organizations worldwide, powering productivity through...