Towards Small Language Models for Security Query Generation in SOC Workflows

Analysts in Security Operations Centers routinely query massive telemetry streams using Kusto Query Language KQL. Writing correct KQL requires specialized expertise, and this dependency creates a bottleneck as security teams scale. This paper investigates whether Small Language Models SLMs can...

Microsoft named a leader in the 2025 Gartner® Magic Quadrant™ for Email Security

We’re honored to share that Microsoft has been named a Leader in the 2025 Gartner® Magic Quadrant™ for Email Security. We believe this recognition highlights the value of Microsoft Defender for Office 365’s innovative capabilities in addressing today’s complex email security challenges. Protect...

Microsoft named a leader in the 2025 Gartner® Magic Quadrant™ for Email Security

We’re honored to share that Microsoft has been named a Leader in the 2025 Gartner® Magic Quadrant™ for Email Security. We believe this recognition highlights the value of Microsoft Defender for Office 365’s innovative capabilities in addressing today’s complex email security challenges. Protect...

Spy vs. spy: How GenAI is powering defenders and attackers

Generative AI GenAI is reshaping cybersecurity for both attackers and defenders, but its future capabilities are difficult to measure as techniques and models are evolving rapidly. Adversaries continue to use GenAI with varying levels of reliance. State-sponsored groups continue to take advantage...

MS Teams Guest Access Can Remove Defender Protection When Users Join External Tenants

Cybersecurity researchers have shed light on a cross-tenant blind spot that allows attackers to bypass Microsoft Defender for Office 365 protections via the guest access feature in Teams. "When users operate as guests in another tenant, their protections are determined entirely by that hosting...

Microsoft Teams Flaw in Guest Chat Exposes Users to Malware Attacks

New research from Ontinue exposes a major security flaw in Microsoft Teams B2B Guest Access. Learn how attackers bypass all Defender for Office 365 protections with a single invite...

CVE-2025-62459

Microsoft Defender Portal Spoofing Vulnerability...

EUVD-2025-198367

Microsoft Defender Portal Spoofing Vulnerability...

CVE-2025-62459

Microsoft Defender Portal Spoofing Vulnerability...

CVE-2025-62459 Microsoft Defender Portal Spoofing Vulnerability

...

CVE-2025-62459

Microsoft Defender Portal Spoofing Vulnerability...

CVE-2025-62459

CVE-2025-62459 is a Microsoft Defender Portal vulnerability described as a portal spoofing issue that can enable UI spoofing (spoofed Defender Portal interactions). The connected sources identify the affected product as the Defender / 365 Defender Portal, with the vulnerability arising from a por...

CVE-2025-62459 Microsoft Defender Portal Spoofing Vulnerability

...

Microsoft Defender Portal Spoofing Vulnerability

...

KLA90453 SUI vulnerability in Microsoft Windows

A spoofing vulnerability vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2025-62459 Related products Microsoft-365 CVE list CVE-2025-62459 high Solution Install necessary updates from the KB section, tha...

PT-2025-47644

Microsoft Defender Portal Spoofing Vulnerability...

Microsoft Defender 跨站脚本漏洞

Microsoft Defender is a threat protection software from Microsoft Corporation USA. A cross-site scripting vulnerability exists in Microsoft Defender that stems from a portal spoofing vulnerability...

​​Ambient and autonomous security for the agentic era​​

Over the past year, I've had countless conversations with customers who are striving to unlock human ambition with AI. They are on their journey to become Frontier Firms, where humans and agents push the boundaries of innovation and create new possibilities, empowering humans to become limitless...

​​Ambient and autonomous security for the agentic era​​

Over the past year, I've had countless conversations with customers who are striving to unlock human ambition with AI. They are on their journey to become Frontier Firms, where humans and agents push the boundaries of innovation and create new possibilities, empowering humans to become limitless...

Inside the attack chain: Threat activity targeting Azure Blob Storage

Azure Blob Storage, like any object data service, is a high-value target for threat actors due to its critical role in storing and managing massive amounts of unstructured data at scale across diverse workloads. Organizations of all sizes use Blob Storage to support key workloads—such as AI, high...