Microsoft Teams Voice Phishing Campaign Deploys Malware Through Remote Support Tools
A sophisticated phishing attack using Microsoft Teams voice calls has been discovered targeting organizations by deploying malware through legitimate remote tools. The multi-stage attack combines social engineering with technical exploitation, highlighting growing concerns about AI-enabled social engineering threats.
NixOS's Reproducible Builds Could Have Caught the Dangerous xz Linux Backdoor
A malicious backdoor discovered in xz compression software exposed Linux systems to remote code execution risks. NixOS's reproducible build system could have detected this supply chain attack by comparing build outputs for discrepancies, highlighting the importance of robust security practices.
Google's Record $32B Acquisition of Wiz Reshapes Cloud Security Landscape
Google's parent company Alphabet makes its largest-ever acquisition, purchasing cybersecurity startup Wiz for $32 billion. The strategic move aims to bolster Google Cloud's security capabilities while maintaining Wiz's cross-platform services.
Critical Vulnerability in Paragon Driver Exploited by Ransomware Groups
Microsoft researchers have discovered multiple severe flaws in Paragon's partition manager driver, with ransomware gangs actively exploiting one vulnerability to gain system-level access. The critical flaw affects BioNTdrv.sys driver versions prior to 2.0.0, enabling attacks even when the software isn't installed.
Anduril Takes Over Army's IVAS Program, Promising Next-Gen Military Goggle Upgrades
Defense company Anduril is assuming control of the Army's $21.9B IVAS augmented reality program from Microsoft, aiming to resolve user comfort issues. The transition comes as new technologies like Kopin's NeuralDisplay system promise revolutionary advances in military goggle capabilities.
Russian Hackers Exploit Microsoft Device Code Authentication to Target M365 Accounts
Security researchers uncover sophisticated Russian threat actors using Microsoft's legitimate Device Code Authentication to compromise M365 accounts of government organizations and NGOs. The attack leverages social engineering and authentic Microsoft domains to bypass traditional security measures.
Critical Windows Security Update Patches 55 Flaws, Including Two Active Exploits
Microsoft's February 2025 Patch Tuesday addresses 55 security vulnerabilities in Windows systems, with two zero-day flaws already exploited by hackers. The update fixes multiple critical issues including remote code execution and privilege elevation vulnerabilities.
Cybercriminals Target Organizations with Sophisticated ADFS Phishing Scheme
Security researchers have uncovered a sophisticated phishing campaign targeting organizations using Microsoft ADFS, with attackers creating convincing fake login portals to steal credentials and bypass MFA. The scam has affected over 150 organizations across education, healthcare, government and technology sectors, primarily in the US, Canada, Australia and Europe.
Critical UEFI Secure Boot Vulnerability Threatens Windows Systems Worldwide
A major security flaw in UEFI Secure Boot (CVE-2024-7344) exposes Windows systems to potential bootkit attacks that can survive system reboots and OS reinstalls. Microsoft and Linux vendors have released patches to address this vulnerability that bypasses critical startup security checks.
The Evolution of Passkeys: Promising Yet Imperfect Authentication Solution in 2025
Passkeys are emerging as a faster, more secure alternative to traditional passwords, offering unique benefits like phishing resistance and biometric protection. While implementation challenges and recovery concerns persist, industry collaboration is driving improvements in this authentication technology.