Microsoft Security Blog
Your source for the latest in cybersecurity
- Trending
- Thought Leadership
- AI and agents
- Analyst reports
- Cloud security
- Compliance
- Data protection
- Data security
- Device management
- Email security
- Endpoint security
- Incident response
- Identity & access management
- Information protection & governance
- Internet of Things (IoT) security
- MISA
- Multifactor authentication
- Network security
- Office of the CISO
- Privacy
- Risk management
- Microsoft Secure Future Initiative
- Secure remote work
- Security management
- Security operations
- SIEM & XDR
- Small & medium business
- Threat intelligence
- Threat trends
- Zero Trust
- Threat intelligence
Threat intelligence
- 10 min read
SesameOp: Novel backdoor uses OpenAI Assistants API for command and control
Microsoft Incident Response – Detection and Response Team (DART) researchers uncovered a new backdoor that is notable for its novel use of the OpenAI Assistants Application Programming Interface (API) as a mechanism for command-and-control (C2) communications.
- 20 min read
Inside the attack chain: Threat activity targeting Azure Blob Storage
Azure Blob Storage is a high-value target for threat actors due to its critical role in storing and managing massive amounts of unstructured data at scale across diverse workloads and is increasingly targeted through sophisticated attack chains that exploit misconfigurations, exposed credentials, and evolving cloud tactics.
- 12 min read
Investigating targeted “payroll pirate” attacks affecting US universities
Microsoft Threat Intelligence has identified a financially motivated threat actor that we track as Storm-2657 compromising employee accounts to gain unauthorized access to employee profiles and divert salary payments to attacker-controlled accounts, attacks that have been dubbed “payroll pirate”.
Stay ahead of threats
Get expert insights, threat intelligence, and the latest cybersecurity reports from Security Insider.
AI and machine learning
Modernize your security operations center
Confidently secure your multicloud, multiplatform environment with Microsoft Sentinel – a cloud-native security information and event management (SIEM) solution.
