Microsoft

How Storm-2949 turned a compromised identity into a cloud-wide breach

Storm-2949 turned stolen credentials into a cloud-wide breach, moving from identity compromise to large-scale data theft ...

Microsoft Reveals How One Hacked Identity Triggered a Massive Cloud-Wide Breach

Microsoft says Storm-2949 used one hacked identity to infiltrate cloud systems, steal sensitive data, and spread across Azure ...
Windows Report

Tycoon2FA Returns With New Microsoft 365 Device-Code Phishing Attacks

Tycoon2FA has returned with new device-code phishing attacks targeting Microsoft 365 users through legitimate OAuth login ...
Security Boulevard

12 Microsoft Entra ID SAML Errors That Break Enterprise Logins and How to Resolve Them

Fix the 12 most common Entra ID SAML errors B2B SaaS teams hit (AADSTS50105, signature mismatch, NameID, clock skew) with exact debug steps.

Backup Validation Service Launched by SA’s Largest Optus Channel Partner

SpaceTel Launches Backup Restore Testing Service for Adelaide Businesses Hindmarsh, Australia - May 15, 2026 / Spacetel ...
GovInfoSecurity

Breach Roundup: Shai-Hulud Copycat Hits npm

This week, more incidents that we can here list. Among them: cloned Shai-Hulud malware, a new maximum CVSS Cisco flaw. Edge ...

How Microsoft’s GitHub just told everyone that AI agents are 'behind' recent outages: We hear the pain you are

GitHub CTO Vlad Fedorov has published a public apology after two major incidents left thousands of repositories and pull requests in broken states. The platform's April uptime has dropped below 85 ...
TechBooky

Hackers Abuse Microsoft Password Reset to Steal Data

Data is being stolen by a threat actor who is targeting Microsoft 365 and Azure production installations using assaults that ...
Pure Xbox

PSA: Microsoft Is Removing SMS Authentication From Everyone's Xbox Account

Microsoft is officially in the process of removing SMS authentication and account recovery as an option from everyone's ...

Microsoft Self-Service Password Reset abused in Azure data theft attacks

A threat actor targeting Microsoft 365 and Azure production environments is stealing data in attacks that abuse legitimate ...
Security Boulevard

Authentication Services in 2026: How They Work, Top Providers Compared, and How to Choose

Authentication services in 2026: how they work, honest comparison of MojoAuth vs Auth0, Okta, Stytch, Frontegg, and how to choose based on use case ...
Lifehacker

Microsoft Is Eliminating SMS Codes for Two-Factor Authentication

Emily Long is a freelance writer based in Salt Lake City. After graduating from Duke University, she spent several years reporting on the federal workforce for Government Executive, a publication of ...