63
fiabilidad
A French engineer has declared war on AWS, Google and Microsoft using AI-generated sea shanties, satirical poetry, and a multilingual protest campaign
95
fiabilidad
Article URL: https://www.tmj4.com/news/racine-county/microsoft-pulls-plug-on-plans-for-244-acre-data-center-in-caledonia-after-community-pushback
Comments URL: https://news.ycombinator.com/item?id=48266422
Points: 106
# Comments: 86
70
fiabilidad
If you can’t—or don’t want to—upgrade to full Windows 11, consider this lightweight version of Microsoft’s operating system that works on a wide range of computers.
96
fiabilidad
The FBI is warning about the Kali365 phishing-as-a-service platform (PhaaS) that is used to hijack Microsoft 365 accounts by abusing OAuth device code authentication to steal session tokens and bypass multi-factor authentication (MFA). [...]
96
fiabilidad
https://opensource.microsoft.com/blog/2026/04/28/continuing-...
Comments URL: https://news.ycombinator.com/item?id=48253386
Points: 296
# Comments: 93
95
fiabilidad
Hong Kong’s technology infrastructure is undergoing a major transformation as local government and businesses replace Western products with domestic alternatives, driven by closer integration with mainland China and rising geopolitical risks, according to tech experts.
US tech giants like Microsoft …
95
fiabilidad
https://archive.ph/WfCta
Comments URL: https://news.ycombinator.com/item?id=48238896
Points: 307
# Comments: 248
66
fiabilidad
Article URL: https://fortune.com/2026/05/22/microsoft-ai-cost-problem-tokens-agents/
Comments URL: https://news.ycombinator.com/item?id=48244434
Points: 184
# Comments: 43
96
fiabilidad
Kali365, which was first observed in April, abuses legitimate Microsoft device authorization pages to grant persistent access to cybercriminal-controlled applications.
The post FBI warns about fast-growing phishing kit targeting Microsoft 365 users appeared first on CyberScoop.
95
fiabilidad
Article URL: https://aiweekly.co/alerts/microsoft-drops-claude-code-after-budget-overrun
Comments URL: https://news.ycombinator.com/item?id=48238896
Points: 38
# Comments: 9
83
fiabilidad
Last month with the new AMD Zen 5 "Dual Edition" 3D V-Cache CPU, the AMD Ryzen 9 9950X3D2 Dual Edition showed great performance on Linux across a range of workloads. Curious if the operating system was playing into the greater benefit of Ryzen 9 9950X3D2 versus just the workloads tested, this articl…
63
fiabilidad
Microsoft says classic client may lose embedded pictures thanks to wrapping bug
95
fiabilidad
MFA? No problem, says crimeware that tricks users into handing attackers the keys to M365
70
fiabilidad
Listening to your customers? Who are you, and what have you done with Microsoft?
89
fiabilidad
The AI assistant can build presentations from scratch or edit existing slides, and is available to users across all major tiers
72
fiabilidad
The advanced persistent threat group also relied on SOCKS proxies like SoftEther VPN, tunneling tools that act as a middleman between victim and attacker.
95
fiabilidad
Artificial intelligence platforms may be just as susceptible to social engineering as human beings, but they are proving remarkably good at finding security vulnerabilities in human-made computer code. That reality is on full display this month with some of the more widely-used software makers -- in…
89
fiabilidad
A deal would give Microsoft a win in the race to supply AI companies with custom silicon, where it trails Amazon and Google
60
fiabilidad
CHUWI this week announced their UniBook laptop as a ~$449 USD laptop that aims to compete with Apple's MacBook Neo. While shipping with Microsoft Windows 11, it should be Linux-friendly and we'll soon be putting it to the test at Phoronix...
95
fiabilidad
The move completes Canva's integration across all four major AI assistants: Claude, ChatGPT, Microsoft Copilot, and Gemini
98
fiabilidad
Microsoft today pushed software updates to fix a staggering 167 security vulnerabilities in its Windows operating systems and related software, including a SharePoint Server zero-day and a publicly disclosed weakness in Windows Defender dubbed "BlueHammer." Separately, Google Chrome fixed its fourth…
95
fiabilidad
Back in 2024 there were Linux patches to enable a partially-working Microsoft Surface Pro 9 5G laptop that is powered by the Qualcomm Snapdragon 8xc Gen 3 (SC8280XP) SoC. Now in 2026, there are new patches for making that ARM-powered Microsoft Surface laptop actually working more respectably under L…
93
fiabilidad
The bugs could be exploited to elevate privileges to System or create a denial-of-service (DoS) condition.
The post Microsoft Patches Exploited UnDefend and RedSun Defender Zero-Days appeared first on SecurityWeek.
79
fiabilidad
Microsoft’s AI red team lead talked to CyberScoop about the goals behind open sourcing a pair of security tools meant for developers and incident responders.
The post Meet Rampart and Clarity, Microsoft’s new red team combo AI agents appeared first on CyberScoop.
63
fiabilidad
Microsoft is responsible for over 90% of the carbon-removal market, and reports suggested the company was pausing purchases entirely. This new deal should help assuage the fears of CDR startups.
64
fiabilidad
The loophole allows spammers and scammers to send emails from a legitimate Microsoft email address typically used for sending genuine account alerts.
89
fiabilidad
Org that represents Meta, Google and Microsoft plans more heat reuse guidelines as debate over bit barn social license burns red hot
77
fiabilidad
Redmond open sources two tools for building and maintaining safer agents
96
fiabilidad
France is already moving on from Zoom and Microsoft Teams in favor of homegrown alternatives. Other countries are quickly following suit.
95
fiabilidad
GitHub on Wednesday officially confirmed that the breach of its internal repositories was the result of a compromise of an employee device involving a poisoned version of the Nx Console Microsoft Visual Studio Code (VS Code) extension.
The development comes as the Nx team revealed that the extensi…
96
fiabilidad
Microsoft has disclosed that a privilege escalation and a denial-of-service flaw in Defender has come under active exploitation in the wild.
The former, tracked as CVE-2026-41091, is rated 7.8 on the CVSS scoring system. Successful exploitation of the flaw could allow an attacker to gain SYSTEM pri…
96
fiabilidad
On Wednesday, Microsoft started rolling out security patches for two Defender vulnerabilities that have been exploited in zero-day attacks. [...]
69
fiabilidad
Red Hat’s free distro loses a desktop, but makes an important new friend
90
fiabilidad
The exploitation is mitigated by preventing the FsTx Auto Recovery Utility from starting when the WinRE image launches.
The post Microsoft Rolls Out Mitigations for ‘YellowKey’ BitLocker Bypass appeared first on SecurityWeek.
89
fiabilidad
CISA has added seven new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.
CVE-2008-4250 Microsoft Windows Buffer Overflow Vulnerability
CVE-2009-1537 Microsoft DirectX NULL Byte Overwrite Vulnerability
CVE-2009-3459 Adobe Acrobat and Re…
97
fiabilidad
GitHub said late Tuesday that internal repositories were exfiltrated after an employee device was compromised through a poisoned Visual Studio Code extension, an incident that underscores the growing risks facing software development platforms and the ecosystems built around third-party developer to…
95
fiabilidad
Old, busted, insecure authentication to be replaced with something shinier and safer
66
fiabilidad
Cybersecurity researchers have flagged fresh activity from a China-aligned threat actor known as Webworm in 2025, deploying custom backdoors that employ Discord and Microsoft Graph API for command-and-control (C2 or C&C) communications.
Webworm, first publicly documented by Broadcom-owned Symantec …
97
fiabilidad
Microsoft on Tuesday said it disrupted a malware-signing-as-a-service (MSaaS) operation that weaponized the company's Artifact Signing system to deliver malicious code and conduct ransomware and other attacks, compromising thousands of machines and networks across the world.
The tech giant attribut…
94
fiabilidad
Microsoft has unveiled two new open-source tools called RAMPART and Clarity to assist developers in better testing the security of artificial intelligence (AI) agents.
RAMPART, short for Risk Assessment and Measurement Platform for Agentic Red Teaming, functions as a Pytest-native safety and securi…
97
fiabilidad
Microsoft on Tuesday released a mitigation for a BitLocker bypass vulnerability named YellowKey following its public disclosure last week.
The zero-day flaw, now tracked as CVE-2026-45585, carries a CVSS score of 6.8. It has been described as a BitLocker security feature bypass.
"Microsoft is awar…
96
fiabilidad
Microsoft has shared mitigations for YellowKey, a recently disclosed Windows BitLocker zero-day vulnerability that grants access to protected drives. [...]
95
fiabilidad
OpenAI was founded as a nonprofit aiming to build ethical, open-source artificial general intelligence. Years later, Elon Musk filed a lawsuit accusing CEO Sam Altman, OpenAI president Greg Brockman, and Microsoft of manipulating him into donating to a public-interest organisation which later create…
96
fiabilidad
The jury's speedy decision to reject Elon Musk's lawsuit against the other founders of OpenAI and Microsoft confirmed what we saw in the courtroom: Musk's case was a weak one, in part because he waited so long to file it.
96
fiabilidad
'Thousands' of US victims, including 12+ machines owned and operated by Redmond
95
fiabilidad
For years, civil society organizations, workers, journalists, and human rights experts have warned that major technology companies risk enabling grave human rights abuses when they provide cloud computing, AI, and surveillance infrastructure to governments implicated in violations of international a…
96
fiabilidad
The SHub Reaper stealer, which hides behind fake WeChat and Miro installers, marks a shift from ClickFix social engineering to Apple script-based execution.
89
fiabilidad
A threat actor targeting Microsoft 365 and Azure production environments is stealing data in attacks that abuse legitimate applications and administration features. [...]
91
fiabilidad
Microsoft says it has disrupted a malware-signing-as-a-service (MSaaS) operation that abused the company's Artifact Signing service to generate fraudulent code-signing certificates used by ransomware gangs and other cybercriminals. [...]
74
fiabilidad
Attackers are increasingly abusing Microsoft’s decades-old MSHTA utility to stealthily deliver stealers, loaders, and persistent malware through phishing, fake software downloads, and LOLBIN-based attack chains.
The post Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks appeared first …
67
fiabilidad
Fox Tempest provides a service that cybercriminals use to distribute ransomware and other malware disguised as legitimate software.
The post Microsoft Disrupts Malware-Signing Service Run by ‘Fox Tempest’ appeared first on SecurityWeek.
75
fiabilidad
Fox Tempest, a financially-motivated threat group, allowed ransomware operators and other cybercriminals to slip malware-laced software past security controls.
The post Microsoft disrupts cybercrime service that abused software verification systems en masse appeared first on CyberScoop.
74
fiabilidad
Latest hardware adds Intel’s newest AI-focused processors as Redmond continues pushing enterprises toward Copilot+ PCs
68
fiabilidad
Cybersecurity researchers have flagged a compromised version of the Nx Console extension that was published to the Microsoft Visual Studio Code (VS Code) Marketplace.
The extension in question is rwl.angular-console (version 18.95.0), a popular user interface and plugin for code editors like VS Cod…
67
fiabilidad
In February 2026, a phishing-as-a-service (PhaaS) platform called EvilTokens went live. Within five weeks, it had compromised more than 340 Microsoft 365 organizations across five countries.
The targets of the platform received a message asking them to enter a short code at microsoft.com/devicelog…
93
fiabilidad
Microsoft says customers in restricted network environments may encounter Windows Update failures after installing the January 2026 optional non-security preview updates. [...]
96
fiabilidad
Microsoft's total vulnerability count stayed steady in 2025, but critical flaws surged year over year. BeyondTrust breaks down why attackers are increasingly focused on privilege escalation and identity abuse. [...]
83
fiabilidad
Microsoft has confirmed user reports that the Teams team collaboration app is displaying non-dismissible location prompts on some macOS systems. [...]
98
fiabilidad
Microsoft plans to raise the quality bar of Windows 11 drivers, as drivers "sit at the heart of every Windows experience" and connect the OS to the "silicon, components, and peripherals." [...]
69
fiabilidad
While also spoofing all the trusted domains - Apple, Microsoft, and Google - in the same attack
97
fiabilidad
CVE-2026-42897 stems from a cross-site scripting (XSS) vulnerability and can allow an attacker to compromise Outlook Web Access (OWA) mailboxes.
96
fiabilidad
The advisory jury found Altman, OpenAI president Greg Brockman, and Microsoft not liable, with the court agreeing with the determination
69
fiabilidad
Experimental Windows 11 build restores some old favorites, though the rough edges are still showing
97
fiabilidad
Microsoft is also testing a smaller taskbar and more customizable Start menu.
95
fiabilidad
Testing? We've heard of it
95
fiabilidad
A follow up to our open letter regarding Microsoft’s formal review of recent allegations about Israel’s usage of Azure cloud for the surveillance and targeting of Palestinians.
The post Joint letter to Microsoft regarding Israeli military use of Azure cloud and AI services appeared first on Access …
95
fiabilidad
Through a new joint letter, we're calling on Microsoft to publish the findings of its review into the Israeli military’s use of the company services.
The post Microsoft: it’s time to come clean about your ties to the Israeli military appeared first on Access Now.
96
fiabilidad
It’s nasty, but it requires physical access to the computer:
The exploit, named YellowKey, was published earlier this week by a researcher who goes by the alias Nightmare-Eclipse. It reliably bypasses default Windows 11 deployments of BitLocker, the full-volume encryption protection Microsoft provid…
97
fiabilidad
Microsoft has confirmed that the May 2026 Windows 11 security update (KB5089549) fails to install on some systems and triggers 0x800f0922 errors. [...]
89
fiabilidad
Microsoft has finally brought back the resizable taskbar and Start menu to Windows 11 in the latest preview version rolling out to Insiders in the Experimental channel. [...]
95
fiabilidad
Article URL: https://www.techspot.com/news/112410-security-researcher-microsoft-secretly-built-backdoor-bitlocker-releases.html
Comments URL: https://news.ycombinator.com/item?id=48168856
Points: 355
# Comments: 153
90
fiabilidad
The Tycoon2FA phishing kit now supports device-code phishing attacks and abuses Trustifi click-tracking URLs to hijack Microsoft 365 accounts. [...]
96
fiabilidad
Hackers linked to Russia's military intelligence units are using known flaws in older Internet routers to mass harvest authentication tokens from Microsoft Office users, security experts warned today. The spying campaign allowed state-backed Russian hackers to quietly siphon authentication tokens fr…
73
fiabilidad
In this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news. It’s a quiet week with Thanksgiving in the US, but there’s always some cyber to talk about:
Airbus rolls out software updates after a cosmic ray bitflips an A320 into a dive
Krebs tracks down a Scattered L…
84
fiabilidad
In the final show of 2025, Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:
React2Shell attacks continue, surprising no one
The unholy combination of OAuth consent phishing, social engineering and Azure CLI
Venezuela’s state oil firm gets ransomware’d, blames U…
65
fiabilidad
Patrick Gray and Adam Boileau are joined by the newest guy on the Risky Business Media team, James WIlson. They discuss the week’s cybersecurity news, including:
Notepad++ update supply chain attack has been attributed to China
The AI agent future is even more stupid than expected; behold the …
88
fiabilidad
On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:
Microsoft reshuffles security leadership. It doesn’t spark joy.
Russia is hacking the Winter Olympics. Again. But y tho?
China-linked groups are keeping busy, hacking telcos in Norway, Singapo…
97
fiabilidad
A security researcher claims Microsoft quietly fixed an Azure Backup for AKS vulnerability after rejecting his report, and without issuing a CVE. Microsoft disputes the claim, telling BleepingComputer the behavior was expected and that "no product changes were made," despite the researcher documenti…
83
fiabilidad
Plus: Instructure’s Canvas ransomware debacle comes to a close, an alleged dark net market kingpin gets arrested, OpenAI workers fall victim to a supply chain attack, and more.
96
fiabilidad
Microsoft has shared mitigations for CVE-2026-42897 until a permanent patch can be released for affected Exchange Server versions.
The post Microsoft Warns of Exchange Server Zero-Day Exploited in the Wild appeared first on SecurityWeek.
97
fiabilidad
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.
CVE-2026-42897 Microsoft Exchange Server Cross-Site Scripting Vulnerability
This type of vulnerability is a frequent attack vector for malicious cyber actors and pos…
96
fiabilidad
Microsoft mitigation may bork inline images, calendar printing while admins wait for a proper patch
64
fiabilidad
User interface tweaks are nice, but reliable drivers matter more
95
fiabilidad
Microsoft is introducing a new capability that will allow it to remotely roll back problematic Windows drivers delivered through Windows Update. [...]
90
fiabilidad
Microsoft is updating the Edge web browser to ensure it no longer loads saved passwords into process memory in clear text at startup after previously stating it was "by design." [...]
97
fiabilidad
During the second day of Pwn2Own Berlin 2026, competitors collected $385,750 in cash awards after exploiting 15 unique zero-day vulnerabilities in multiple products, including Windows 11, Microsoft Exchange, and Red Hat Enterprise Linux for Workstations. [...]
64
fiabilidad
El presidente compró acciones de Netflix, Paramount, Nvidia, Boeing y Microsoft, entre otras operaciones realizadas en el primer trimestre, valoradas en al menos 220 millones de dólares
79
fiabilidad
Ackman began building the position in February after Microsoft stock fell, calling the software giant's valuation "highly compelling"
61
fiabilidad
For what originally began as an open-source Intel software project, Cloud Hypervisor continues seeing robust development outside the confines of Intel Corp these days with ongoing improvements driven by Microsoft, Cyberus Tech, Ant, and other organizations for this Rust-based VMM for cloud workloads…