The Hacker News

Microsoft Details Phishing Campaign Targeting 35,000 Users Across 26 Countries

Microsoft disclosed a credential theft campaign targeting 35,000+ users at 13,000+ organizations across 26 countries.
Bleeping Computer

Microsoft warns of surge in HTML smuggling phishing attacks

Microsoft has seen a surge in malware campaigns using HTML smuggling to distribute banking malware and remote access trojans (RAT). While HTML smuggling is not a new technique, Microsoft is seeing it ...
PC World

Microsoft’s agentic HTML can leak passwords and AI keys, researcher finds

With new AI systems comes new AI vulnerabilities, and a big one was just discovered. It’s a flaw in Microsoft’s method of allowing agents to interact with websites on your behalf. Microsoft calls this ...
Bleeping Computer

Microsoft Office 365 phishing evades detection with HTML Lego pieces

A recent phishing campaign used a clever trick to deliver the fraudulent web page that collects Microsoft Office 365 credentials by building it from chunks of HTML code stored locally and remotely.