Geek-Guy.com

Category: Microsoft

Auto Added by WPeMatico

Cybersecurity, Exploits, Global Security News, Microsoft, Research, Threats

Microsoft Patch Tuesday addresses 81 vulnerabilities, none actively exploited

Microsoft addressed 81 vulnerabilities affecting its enterprise products and underlying Windows systems, but none have been actively exploited, the company said in its latest security update.  The company’s monthly bundle of patches includes one high-severity vulnerability and eight critical defects, including three designated as more likely to be exploited.  The most severe defect disclosed this…

Read more →

Data loss, encryption, Global Security News, Microsoft, phishing, Podcast

Smashing Security podcast #432: Oops! I auto-filled my password into a cookie banner

We unpack how some password managers can be tricked into coughing up your secrets, with a clickjacking sleight-of-hand, what website owners can do to prevent it, and how to lock down your personal password vault. Then we time-hope to the post-quantum scramble: “harvest-now, decrypt later”, Microsoft’s 2033 quantum-safe pledge, and whether your printer will survive…

Read more →

AI, Artificial Intelligence, Global Security News, Microsoft, Podcast, Social networks

The AI Fix #65: Excel Copilot will wreck your data, and can AI fix social media?

In episode 65 of The AI Fix, a pigeon gives a PowerPoint presentation, Mark plays Graham a song about the Transformer architecture, a robot dog delivers parcels, some robots fall over at the World Humanoid Robot Games, and Graham takes credit for one of computing’s greatest insights. Plus, Graham explains why Microsoft doesn’t want you…

Read more →

Global Security News, Law & order, malware, Microsoft, Podcast, vulnerability

Smashing Security podcast #431: How to mine millions without paying the bill

In episode 431 of the “Smashing Security” podcast, a self-proclaimed crypto-influencer calling himself CP3O thought he had found a shortcut to riches — by racking up millions in unpaid cloud bills. Meanwhile, we look at the growing threat of EDR-killer tools that can quietly switch off your endpoint protection before an attack even begins. And…

Read more →

Asia Pacific, china, Exchange, Geopolitics, Global Security News, Microsoft

China accuses US of exploiting Microsoft zero-day in cyberattack

U.S. intelligence agencies launched cyberattacks on two Chinese military enterprises dating back to 2022, in one case exploiting a Microsoft zero-day, China alleged Friday. The Cyber Security Association of China said that in the first case, U.S. agencies from July of 2022 to July of 2023 “exploited a zero-day vulnerability in Microsoft Exchange Mail to…

Read more →

Asia Pacific, Commentary, Global Security News, Microsoft, Software

Microsoft’s software licensing playbook is a national security risk

News of two major Microsoft security events in as many weeks should concern every federal agency, not just because of the breaches themselves, but because of what they reveal about how the company does business. First, ProPublica uncovered that Microsoft allowed Chinese engineers to work on sensitive U.S. military cloud projects under the supervision of…

Read more →

Cybersecurity, Exploits, Global Security News, Microsoft, Research, Technology, Threats

Microsoft Patch Tuesday addresses 130 vulnerabilities, none actively exploited

Microsoft addressed 130 vulnerabilities across its products and underlying Windows systems, but none have been actively exploited in the wild, the company said in its latest security update Tuesday. A proof-of-concept exploit for a high-severity defect in SQL Server — CVE-2025-49719 — has been shared publicly, researchers said. The information disclosure vulnerability, which has a…

Read more →

Cybercrime, Cybersecurity, Exploits, Global Security News, Microsoft, remote code execution

Call of Duty takes PC game offline after multiple reports of RCE attacks on players

The makers of Call of Duty: World War 2 took the PC version of the game offline over the weekend amid widespread reports online that a remote code execution vulnerability was being used to take over victim computers during live multiplayer matches. On June 30, the 2017 game was released through Xbox’s GamePass service. On…

Read more →

antivirus, crowdstrike, Global Security News, kernel, Microsoft, Technology

Microsoft security updates address CrowdStrike crash, kill ‘Blue Screen of Death’

When a faulty software update from cybersecurity firm CrowdStrike last year caused possibly the largest IT outage in history, Microsoft ended up taking much of the blame. CrowdStrike’s Falcon endpoint detection and response was on millions of Windows devices worldwide, and like most antivirus products that need broad access to different systems to do their…

Read more →

crowdstrike, Cybercrime, Cybersecurity, Global Security News, Google, Mandiant, Microsoft, Palo Alto Networks, Ransomware, Research, Threat group, Threats, Uncategorized, Unit 42

CrowdStrike, Microsoft aim to eliminate confusion in threat group attribution

CrowdStrike and Microsoft announced an agreement Monday to formally connect the different names each company uses for the same threat groups in their attribution analysis. The companies said the effort will clarify inconsistencies across the industry’s naming taxonomies and acknowledge when both companies identify the same threat groups.  The alliance between the longstanding competitors doesn’t…

Read more →

crowdstrike, Cybercrime, Cybersecurity, Global Security News, Google, Mandiant, Microsoft, Palo Alto Networks, Ransomware, Research, Threat group, Threats, Uncategorized, Unit 42

CrowdStrike, Microsoft aim to eliminate confusion in threat group attribution

CrowdStrike and Microsoft announced an agreement Monday to formally connect the different names each company uses for the same threat groups in their attribution analysis. The companies said the effort will clarify inconsistencies across the industry’s naming taxonomies and acknowledge when both companies identify the same threat groups.  The alliance between the longstanding competitors doesn’t…

Read more →

crowdstrike, Cybercrime, Cybersecurity, Global Security News, Google, Mandiant, Microsoft, Palo Alto Networks, Ransomware, Research, Threat group, Threats, Uncategorized, Unit 42

CrowdStrike, Microsoft aim to eliminate confusion in threat group attribution

CrowdStrike and Microsoft announced an agreement Monday to formally connect the different names each company uses for the same threat groups in their attribution analysis. The companies said the effort will clarify inconsistencies across the industry’s naming taxonomies and acknowledge when both companies identify the same threat groups.  The alliance between the longstanding competitors doesn’t…

Read more →

Artificial Intelligence (AI), Asia Pacific, Biden administration, china, Federal Bureau of Investigation (FBI), Global Security News, Government, information sharing, information sharing and analysis centers (ISACs), Microsoft, Ransomware, regulation, Social Engineering, Trump Administration, Workforce

Top FBI cyber official Cynthia Kaiser exits for Halcyon

Cynthia Kaiser, a former top FBI cyber official, is joining the cybersecurity firm Halcyon this week as senior vice president of its newly created ransomware research center. Kaiser left the FBI last week after 20 years, serving most recently as deputy assistant director leading the bureau’s cyber policy, intelligence and engagement branch and eight years…

Read more →

Artificial Intelligence (AI), Asia Pacific, Biden administration, china, Federal Bureau of Investigation (FBI), Global Security News, Government, information sharing, information sharing and analysis centers (ISACs), Microsoft, Ransomware, regulation, Social Engineering, Trump Administration, Workforce

Top FBI cyber official Cynthia Kaiser exits for Halcyon

Cynthia Kaiser, a former top FBI cyber official, is joining the cybersecurity firm Halcyon this week as senior vice president of its newly created ransomware research center. Kaiser left the FBI last week after 20 years, serving most recently as deputy assistant director leading the bureau’s cyber policy, intelligence and engagement branch and eight years…

Read more →

Artificial Intelligence (AI), Asia Pacific, Biden administration, china, Federal Bureau of Investigation (FBI), Global Security News, Government, information sharing, information sharing and analysis centers (ISACs), Microsoft, Ransomware, regulation, Social Engineering, Trump Administration, Workforce

Top FBI cyber official Cynthia Kaiser exits for Halcyon

Cynthia Kaiser, a former top FBI cyber official, is joining the cybersecurity firm Halcyon this week as senior vice president of its newly created ransomware research center. Kaiser left the FBI last week after 20 years, serving most recently as deputy assistant director leading the bureau’s cyber policy, intelligence and engagement branch and eight years…

Read more →

A Little Sunshine, Amazon, Europe, Funnull, Global Security News, infrastructure laundering, Ivan Neculiti, Microsoft, Ne'er-Do-Well News, Silent Push, Stark Industrires Solutions Ltd, Suncity Group, Web Fraud 2.0, Yuri Neculiti, Zach Edwards

U.S. Sanctions Cloud Provider ‘Funnull’ as Top Source of ‘Pig Butchering’ Scams

Image: Shutterstock, ArtHead. The U.S. government today imposed economic sanctions on Funnull Technology Inc., a Philippines-based company that provides computer infrastructure for hundreds of thousands of websites involved in virtual currency investment scams known as “pig butchering.” In January 2025, KrebsOnSecurity detailed how Funnull was being used as a content delivery network that catered to…

Read more →

AI, Global Security News, Microsoft, weather

Microsoft says its Aurora AI can accurately predict air quality, typhoons, and more

One of Microsoft’s latest AI models can accurately predict air quality, hurricanes, typhoons, and other weather-related phenomena, the company claims. In a paper published in the journal Nature and an accompanying blog post this week, Microsoft detailed Aurora, which the tech giant says can forecast atmospheric events with greater precision and speed than traditional meteorological…

Read more →

A Little Sunshine, eset, fbi, Flashpoint, Global Security News, Google, Intel 471, JimmBee, lumen, Lumma Stealer, Maffiozi, Microsoft, Ne'er-Do-Well News, North America, Onix, proofpoint, Russia's War on Ukraine, team cyrmu, U.S. Department of Justice, Zscaler

Oops: DanaBot Malware Devs Infected Their Own PCs

The U.S. government today unsealed criminal charges against 16 individuals accused of operating and selling DanaBot, a prolific strain of information-stealing malware that has been sold on Russian cybercrime forums since 2018. The FBI says a newer version of DanaBot was used for espionage, and that many of the defendants exposed their real-life identities after…

Read more →

Apps, Global Security News, Microsoft, privacy, Security, signal, Windows

Signal’s new Windows update prevents the system from capturing screenshots of chats

Signal said today that it is updating its Windows app to prevent the system from capturing screenshots, thereby protecting the content that is on display. The company said that this new “screen security” setting is enabled by default on Windows 11. Signal said that this new feature is designed to protect users’ privacy from Microsoft’s…

Read more →

Cybercrime, Cybersecurity, Department of Justice (DOJ), Europol, Global Security News, Government, infostealers, Microsoft, Microsoft Digital Crimes Unit, Ransomware, Uncategorized

Lumma Stealer toppled by globally coordinated takedown

Lumma Stealer, a widely used infostealer malware linked to cybercrime sprees and multiple high-profile attacks, was dismantled through a coordinated global operation meant to seize its core infrastructure. The infostealer’s central command, malicious domains and marketplaces where the tool was sold to other cybercriminals have been seized or suspended, Steven Masada, assistant general counsel at…

Read more →

AI, Enterprise, GitHub, Global Security News, mcp, Microsoft, Microsoft Build

GitHub, Microsoft embrace Anthropic’s spec for connecting AI models to data sources

GitHub and Microsoft, GitHub’s corporate parent, are joining the steering committee for MCP, Anthropic’s standard for connecting AI models to the systems where data resides. The announcement, which was made at Microsoft’s Build 2025 conference on Monday, comes as MCP gains steam in the AI industry. Earlier this year, both OpenAI and Google said they…

Read more →

Apps, Global Security News, Microsoft, Microsoft Build, Windows

It’ll soon be free to publish apps to the Microsoft Store

Microsoft is getting rid of developer onboarding fees for the Microsoft Store on Windows, the digital distribution platform for its flagship operating system, the company announced Monday during its Build 2025 conference. Starting June 2025, individual developers will be able to sign up and publish apps to the Microsoft Store without having to pay to…

Read more →

AI, Enterprise, Global IT News, Global Security News, Microsoft, Microsoft Build, science

Microsoft wants to tap AI to accelerate scientific discovery

Can AI speed up aspects of the scientific process? Microsoft appears to think so. At the company’s Build 2025 conference on Monday, Microsoft announced Microsoft Discovery, a platform that taps agentic AI to “transform the [scientific] discovery process,” according to a press release provided to TechCrunch. Microsoft Discovery is “extensible,” Microsoft says, and can handle…

Read more →

AI, Global Security News, Microsoft, Microsoft Build, Windows

AI dev tools for Windows get a fresh coat of paint

Microsoft wants to make it easier for developers to build AI-powered apps on Windows devices. On Monday during its Build 2025 conference, Microsoft announced Windows AI Foundry, a rebranding and expansion of the Windows Copilot Runtime service the company launched last May. Microsoft describes Windows AI Foundry as a “unified platform for local AI development” —…

Read more →

AI, Global Security News, Media & Entertainment, Microsoft, Satya Nadella

Microsoft’s Satya Nadella is choosing chatbots over podcasts

While Microsoft CEO Satya Nadella says he likes podcasts, he might not actually be listening to them anymore. That tidbit comes towards the end of a longer Bloomberg profile of Nadella, with a focus on Microsoft’s AI strategy and its complicated relationship with OpenAI. To illustrate how much he uses the company’s Copilot AI assistant…

Read more →

Coinbase, Global Security News, Layoffs, Microsoft, Social, Uber, Week in Review

TechCrunch Week in Review: Coinbase gets hacked

Welcome back to Week in Review! We’ve got tons of news for you this week, including a hack at Coinbase; YC thinks Google is a ‘monopolist’; layoffs at Microsoft; and much more. Have a great weekend! Uh-oh: Coinbase says that customers’ personal information, including government-issued IDs, was stolen in a data breach. The hackers demanded…

Read more →