Teams is a tool tracked across 27 threat clusters and 32 intelligence report mentions on ThreatCluster. First observed November 20, 2025; most recent activity July 7, 2026.
North Korea's BlueNoroff group is executing a sophisticated campaign against cryptocurrency executives, utilizing fake Zoom meetings enhanced with AI-generated avatars and stolen video footage. The attacks primarily…
The newly identified Pink extortion group has emerged, utilizing voice phishing (vishing) tactics to gain access to Microsoft 365 accounts. Researchers from Unit 42 have tracked the group under cluster designation…
In March 2026, the EvilTokens phishing kit emerged as a significant threat, allowing cybercriminals to bypass multi-factor authentication (MFA) and compromise Microsoft 365 accounts. This Phishing-as-a-Service (PhaaS)…
In early 2026, a surge in phishing attacks utilizing Amazon Simple Email Service (SES) has been reported, exploiting exposed AWS Identity and Access Management (IAM) access keys. Attackers leverage this trusted email…
A new malware campaign is targeting macOS users with the AMOS-linked Atomic Stealer, exploiting fake software update pages and the built-in Script Editor application. Victims are tricked into executing malicious…
VectorCertain LLC has validated its SecureAgent platform, achieving 100% detection and prevention of autonomous multi-step AI exploitation attempts and unsanctioned AI agent scope expansion. The validation involved…
During the Pwn2Own Berlin 2026 event, held from May 14 to 16, security researchers exploited numerous zero-day vulnerabilities, earning over $900,000 in cash prizes. On the first day, 24 unique vulnerabilities were…
BeyondTrust has issued a warning regarding a critical remote code execution (RCE) vulnerability in its Remote Support and Privileged Remote Access software. The flaw, tracked as CVE-2026-1731, allows unauthenticated…
A report by the WA Office of the Auditor General reveals that poor Microsoft 365 security configurations in seven Western Australian government agencies led to a data breach exposing children's personal information and…
A security vulnerability in Microsoft's Copilot Cowork, part of Microsoft 365, allows attackers to exploit indirect prompt injection to exfiltrate sensitive files without user consent. The AI assistant has high-level…