The Official Microsoft Blog

The next phase of the Microsoft-OpenAI partnership

Term Clarity The rapid pace of innovation requires us to continue to evolve our partnership to benefit our customers and both companies. Today, we are announcing an amended agreement to simplify our ...
SecurityWeek

UNC6692 Uses Email Bombing, Social Engineering to Deploy ‘Snow’ Malware

The threat actor infected victims with the Snow malware family – Snowbelt, Snowglaze, and Snowbasin – for persistent access.

Microsoft to offer voluntary retirement to thousands of US employees for the first time

Microsoft is offering about 7% of its US workforce the option to retire early, the latest attempt by a major tech firm to ...
Windows Report

VS Code Update Brings More Flexible Copilot Integration and Faster Chat Experience

Visual Studio Code 1.117 adds Copilot BYOK, faster chat streaming, and terminal fixes, giving developers more control.
TechBooky

Microsoft: Teams Meeting Issues For Some Users After Edge Update

Following a recent Microsoft Edge upgrade, the company acknowledged that a bug preventing Windows users from participating in ...
Visual Studio Magazine

Visual Studio Code 1.117 Expands Copilot Controls for Business and Enterprise User

VS Code 1.117 adds bring-your-own model key support for Copilot Business and Enterprise users and introduces a set of chat, agent, terminal, and TypeScript updates.
The Hacker News

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...

Hackers Impersonate IT Help Desk on Microsoft Teams to Gain Access, Steal Data

Hackers are abusing Microsoft Teams chats to impersonate IT support, gain remote access, move laterally, and steal company ...

Microsoft warns: That ‘IT guy’ messaging you on Teams could be a hacker

Microsoft just sounded the alarm on a scam exploding across American workplaces. Hackers are sliding into Microsoft Teams ...
Microsoft

Cross‑tenant helpdesk impersonation to data exfiltration: A human-operated intrusion playbook

Threat actors are abusing external Microsoft Teams collaboration to impersonate IT helpdesk staff and convince users to grant ...

Rejected By Microsoft, 3 Defender Zero-Days Are Now Actively Exploited

The Huntress SOC is observing the use of Nightmare-Eclipse's BlueHammer, RedSun, and UnDefend exploitation techniques. Investigation by: @wbmmfq, @Curity4201, + @_JohnHammond 🧵👇 ...

Microsoft’s Windows Recall still allows silent data extraction

A cybersecurity researcher says Recall’s redesigned security model does not stop same-user malware from accessing plaintext ...