Microsoft Defender Archives • Daily CyberSecurity

New Microsoft Defender Zero Day Exploit Released Publicly Online Defender zero day exploit race condition vulnerability

New Microsoft Defender Zero Day Exploit Released Publicly Online

Do Son June 10, 2026

Researcher Discloses RoguePlanet Flaw Amidst Ongoing Bug Bounty Dispute A prominent security researcher, Nightmare Eclipse, recently released...

Sophisticated GPU Cryptojacking Campaign Surfaced by Microsoft Experts Cemu emulator Linux malware Blitz Brigantine AOBackdoor GitHub Malware Campaign StealC Infostealer TamperedChef Malware, SEO Poisoning Carbanak malware RubyGems Supply Chain, Infostealer

Cemu emulator Linux malware Blitz Brigantine AOBackdoor GitHub Malware Campaign StealC Infostealer TamperedChef Malware, SEO Poisoning Carbanak malware RubyGems Supply Chain, Infostealer

Sophisticated GPU Cryptojacking Campaign Surfaced by Microsoft Experts

Do Son June 1, 2026

Microsoft Defender Experts recently identified a highly targeted digital threat spreading across the internet. Specifically, a dangerous...

Microsoft Exposes Malicious Typosquat Cluster Targeting Cloud Environments npm supply chain attack credential harvesting malware

Microsoft Exposes Malicious Typosquat Cluster Targeting Cloud Environments

Do Son May 29, 2026

Urgent Alert for DevOps Engineers Microsoft security analysts recently identified an active threat vector targeting modern software...

The Compliance Trap: How a 13,000-Org Phishing Wave Bypasses MFA via AiTM Proxying AiTM Phishing Campaign Microsoft MFA Bypass

The Compliance Trap: How a 13,000-Org Phishing Wave Bypasses MFA via AiTM Proxying

Do Son May 5, 2026

Microsoft’s Defender Security Research and Threat Intelligence teams have sounded the alarm on a massive, highly sophisticated...

Microsoft Defender Flaw Erased DigiCert Root Certificates and Paralyzed Windows Systems Microsoft Defender DigiCert false positive

Microsoft Defender Flaw Erased DigiCert Root Certificates and Paralyzed Windows Systems

Do Son May 5, 2026

On April 2, 2026, DigiCert, a preeminent global authority in digital signatures, fell victim to a sophisticated...

Microsoft Defender Zero-Day “BlueHammer” Hits KEV Catalog Following Researcher’s Protest BlueHammer Exploit Microsoft Defender LPE

Microsoft Defender Zero-Day “BlueHammer” Hits KEV Catalog Following Researcher’s Protest

Do Son April 23, 2026

CISA has officially added a fresh vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, citing evidence of...

Microsoft Teams Exploited for Silent Enterprise Takeovers Teams Impersonation Administrative Abuse

Microsoft Teams Exploited for Silent Enterprise Takeovers

Do Son April 22, 2026

A new investigative report from the Microsoft Defender Security Research Team has unmasked a sophisticated intrusion chain...

Zero-Day Alert: The “Red Sun” Vulnerability Turning Microsoft Defender into a Hacker’s Tool Red Sun vulnerability

Zero-Day Alert: The “Red Sun” Vulnerability Turning Microsoft Defender into a Hacker’s Tool

Do Son April 20, 2026

Microsoft Defender, formerly designated as Windows Defender, serves as the quintessential security suite for Windows 10 and...

EngageSDK Flaw Exposes 50 Million Android Users to Data Theft EngageSDK Vulnerability Android Intent Redirection

EngageSDK Flaw Exposes 50 Million Android Users to Data Theft

Do Son April 14, 2026

In the high-stakes world of digital finance, the security of a mobile wallet is often only as...

New AI-Driven Phishing Campaign Subverts Microsoft’s Device Code Flow EvilToken Device Code Phishing

New AI-Driven Phishing Campaign Subverts Microsoft’s Device Code Flow

Do Son April 10, 2026

Microsoft Defender Security Research has uncovered a sophisticated, wide-scale phishing campaign that weaponizes the Device Code Authentication...

Beyond the URL: How “Cookie-Gated” Web Shells Hide Silent RCE in Plain Sight Cookie-Gated Web Shell Stealth C2

Beyond the URL: How “Cookie-Gated” Web Shells Hide Silent RCE in Plain Sight

Do Son April 9, 2026

A technical analysis from the Microsoft Defender Security Research Team has revealed that threat actors are increasingly...

WhatsApp Under Siege: Microsoft Uncovers Global VBS Malware Campaign WhatsApp VBS Malware Living-off-the-Land (LotL)

WhatsApp Under Siege: Microsoft Uncovers Global VBS Malware Campaign

Do Son April 7, 2026

A new and highly sophisticated malware campaign is exploiting the trust users place in familiar communication platforms....

The Spy in Your Sidebar: Fake AI Browser Extensions Steal Data from 900,000 Users Malicious AI Extensions Chromium Browser Security

The Spy in Your Sidebar: Fake AI Browser Extensions Steal Data from 900,000 Users

Do Son March 10, 2026

A seemingly helpful AI assistant could be a silent spy in your browser. Microsoft Defender Security Research...

Signed Malware Masquerading as Workplace Apps Deploys Persistent Backdoors EV Certificate Phishing RMM Backdoors

Signed Malware Masquerading as Workplace Apps Deploys Persistent Backdoors

Do Son March 6, 2026

Security researchers at Microsoft Defender Experts have uncovered a sophisticated phishing campaign that turns the tools of...

OAuth Hijack: Phishing Campaigns Weaponize Legitimate Redirection to Bypass Defenses OAuth Phishing Redirect URI Abuse

OAuth Hijack: Phishing Campaigns Weaponize Legitimate Redirection to Bypass Defenses

Do Son March 4, 2026

Microsoft Defender researchers have exposed a series of sophisticated phishing campaigns that exploit the inherent trust in...

The Interview Trap: Malicious Next.js Repositories Weaponize Coding Tests to Hack Developers Developer Targeting Campaign Next.js Malware Lures

Developer Targeting Campaign Next.js Malware Lures

The Interview Trap: Malicious Next.js Repositories Weaponize Coding Tests to Hack Developers

Do Son February 27, 2026

The job hunt just got a lot more dangerous for software engineers. Microsoft Defender Experts identified a...

Virtual Invasion: SolarWinds WHD Exploited to Host Hidden QEMU VMs SolarWinds Web Help Desk QEMU Persistence

Virtual Invasion: SolarWinds WHD Exploited to Host Hidden QEMU VMs

Do Son February 10, 2026

In a striking display of “living off the land” gone wrong, threat actors are turning legitimate administrative...

CrashFix: New ClickFix Variant Deliberately Breaks Browsers to Deploy RAT CrashFix Malware ClickFix Campaign

CrashFix: New ClickFix Variant Deliberately Breaks Browsers to Deploy RAT

Do Son February 6, 2026

A dangerous evolution of the “ClickFix” social engineering campaign has been spotted in the wild, using a...

Macs Under Siege: New Infostealers Spread via WhatsApp & Fake Apps OSX/Amos Stealer Electron ASAR Trojan MioLab Malware macOS Security MacSync Stealer macOS Malware ambar-src npm Malware Supply Chain Typosquatting Matryoshka Mac Malware ClickFix Crypto Scam Infostealer Evolution macOS Malware Predator Spyware Intellexa Anti-Analysis XCSSET macOS Malware, Xcode Supply Chain

OSX/Amos Stealer Electron ASAR Trojan MioLab Malware macOS Security MacSync Stealer macOS Malware ambar-src npm Malware Supply Chain Typosquatting Matryoshka Mac Malware ClickFix Crypto Scam Infostealer Evolution macOS Malware Predator Spyware Intellexa Anti-Analysis XCSSET macOS Malware, Xcode Supply Chain

Macs Under Siege: New Infostealers Spread via WhatsApp & Fake Apps

Do Son February 6, 2026

A sweeping new analysis by the Microsoft Defender Security Research Team reveals a rapidly evolution in the...

Locked Out of the Crate: Microsoft’s “Smart” Security Cripples ASUS ROG Ally Smart App Control blocking Armoury Crate, ROG Ally Defender false positive 2026 Microsoft Zero-Day, Cloud Files UAF Microsoft Access end of life CVE-2025-21298 Azure Vulnerabilities

Smart App Control blocking Armoury Crate, ROG Ally Defender false positive 2026 Microsoft Zero-Day, Cloud Files UAF Microsoft Access end of life CVE-2025-21298 Azure Vulnerabilities

Locked Out of the Crate: Microsoft’s “Smart” Security Cripples ASUS ROG Ally

Do Son January 29, 2026

Microsoft Defender suite continues to exhibit erratic behavior, with the latest anomaly involving the Smart App Control...

Critical Alert 1 Active Exploit Detected Today