Threat Detection
The latest Threat Detection coverage — news, analysis, and updates from the WindowsNews.AI desk.
Sophos Central Gets First MDR-Optimized Backup for Microsoft 365
Sophos and Rubrik have combined forces to deliver the industry’s first managed detection and response (MDR)-optimized backup and recovery service nested entirely within a unified security...
Akira Ransomware Exploits Intel ThrottleStop Driver to Disable Windows Defender in Stealthy BYOVD Campaign
A potent ransomware campaign has turned a trusted Intel CPU tuning driver into a weapon, allowing attackers to evade Windows 11's built-in defenses by disabling Microsoft Defender with surgical...
Zenity Labs’ AgentFlayer Exposes Zero-Click Exploits: Microsoft Copilot, ChatGPT AI Agents Hijacked Without User Action
At Black Hat USA 2025, security researchers from Zenity Labs pulled back the curtain on a dangerously overlooked attack surface: enterprise AI agents that can be silently hijacked with zero user...
Sophos and Rubrik Erase the Gap Between Threat Detection and Recovery for Microsoft 365
Black Hat USA 2025 witnessed the unveiling of a solution that could redefine how security teams respond to ransomware and data loss within Microsoft 365. Sophos and Rubrik announced a deep...
CrashPlan Transforms OneDrive into a Free Ransomware-Proof Vault at TechCon 365
Ransomware now hits more than two-thirds of organizations, yet many Microsoft 365 admins still assume their data is fully protected. That dangerous myth will be under the spotlight when CrashPlan...
Sophisticated Microsoft 365 Phishing Attacks Exploit SVG Images and Trusted Tools to Steal Credentials
A new wave of phishing attacks targeting Microsoft 365 users is bypassing conventional email filters by weaponizing SVG image files and repurposing legitimate security tools as cloaking devices. The...
CISA Drops 10 ICS Advisories: Flaws Threaten Delta, JCI, EG4 Inverters and Critical Infrastructure
A flood of industrial vulnerabilities hit the cybersecurity landscape last week as the U.S. Cybersecurity and Infrastructure Security Agency (CISA) dropped ten Industrial Control Systems (ICS)...
Critical Exchange Hybrid Flaw CVE-2025-53786 Allows Undetectable Privilege Escalation—Patch Now
A dangerous authentication bypass has surfaced in Microsoft Exchange hybrid deployments, prompting coordinated alerts from both Microsoft and the U.S. Cybersecurity and Infrastructure Security Agency...
The Phishing Pipeline: How Attackers Weaponize Microsoft 365 Direct Send to Evade Every Defense
Microsoft 365’s Direct Send feature has become a double-edged sword. Designed to let printers, scanners, and applications relay mail without a dedicated mailbox, it now enables attackers to slip...
Rubrik and Sophos Embed Backup into MDR for Unbreakable Microsoft 365 Recovery
Rubrik and Sophos are fusing data recovery with managed detection and response in a new integrated solution that promises to rewrite the rules of cyber resilience for Microsoft 365. The partnership...
Abnormal AI Automates Microsoft 365 Posture Management to Counter Midnight Blizzard-Style Attacks
Abnormal AI has unveiled a major update to its Security Posture Management platform, arming Microsoft 365 administrators with AI-driven automation to detect, prioritize, and remediate dangerous...
Abnormal AI’s New Posture Management Auto-Prioritizes Microsoft 365 Risks for Faster Remediation
Abnormal AI has rolled out a substantial update to its Security Posture Management platform, embedding AI-driven automation deep into the process of identifying, prioritizing, and fixing...