Blue-Team

The latest in malware analysis, threat intelligence, cybersecurity reports, SIEM intelligence, and more Blue-Team news.

Microsoft Defender Anti-Spam Service Bug Disrupts Exchange Online and Teams URLs

Blue-Team

Microsoft Defender Anti-Spam Service Bug Disrupts Exchange Online and Teams URLs

Microsoft is currently addressing a significant service issue where its anti-spam filtering technology within Defender for Office...

Action1 vs. Microsoft WSUS: Evaluating Modern Patch Management Paradigms

Blue-Team

Action1 vs. Microsoft WSUS: Evaluating Modern Patch Management Paradigms

The official deprecation of Microsoft’s Windows Server Update Services (WSUS) on September 20, 2024, marks a pivotal...

Google’s AI Mode Default Shift: Security Implications for Enterprise Search

Blue-Team

Google’s AI Mode Default Shift: Security Implications for Enterprise Search

Google is advancing its integration of artificial intelligence into search by making it easier for users to...

Exploitation of iCloud Calendar for High-Credibility Phishing Campaigns

Blue-Team

Exploitation of iCloud Calendar for High-Credibility Phishing Campaigns

A sophisticated phishing campaign is leveraging Apple’s iCloud Calendar service to distribute fraudulent purchase notifications directly from...

Microsoft Enforces Mandatory MFA for Azure Portal, Phases in Programmatic Access

Blue-Team

Microsoft Enforces Mandatory MFA for Azure Portal, Phases in Programmatic Access

Microsoft has confirmed the completion of its first phase of mandatory multifactor authentication (MFA) enforcement for all...

Protecting Sensitive Data When Using AI Chatbots: A Technical Guide for Security Professionals

Blue-Team

Protecting Sensitive Data When Using AI Chatbots: A Technical Guide for Security Professionals

AI chatbots like ChatGPT have become indispensable tools for security professionals, aiding in tasks from code analysis...

Browser-Based Attacks: The 2025 Threat Landscape and Defensive Strategies

Blue-Team

Browser-Based Attacks: The 2025 Threat Landscape and Defensive Strategies

The browser has become the primary attack surface for modern cyber operations, shifting the frontline of defense...

Windows Update Issues: UAC Prompts, System Recovery Failures, and Contested SSD Impacts

Blue-Team

Windows Update Issues: UAC Prompts, System Recovery Failures, and Contested SSD Impacts

Microsoft has confirmed that recent security updates, specifically the August 2025 patches, are causing significant system disruptions...

Google Issues Workarounds for ChromeOS Authentication Failures in Enterprise Environments

Blue-Team

Google Issues Workarounds for ChromeOS Authentication Failures in Enterprise Environments

Google is currently addressing authentication failures that prevent users from signing into their Clever and ClassLink accounts...

Shadow IT: Quantifying the Unseen Attack Surface Expansion

Blue-Team

Shadow IT: Quantifying the Unseen Attack Surface Expansion

The pervasive use of unauthorized hardware, software, and cloud services, collectively known as Shadow IT, presents a...

Analysis of PromptLock: The First AI-Powered Ransomware Proof-of-Concept

Malware Analysis

Analysis of PromptLock: The First AI-Powered Ransomware Proof-of-Concept

Threat researchers from ESET have identified a novel ransomware strain, designated PromptLock, which represents a significant shift...

Defending Against Malware Persistence Techniques: A Comprehensive Guide with Wazuh

Blue-Team

Defending Against Malware Persistence Techniques: A Comprehensive Guide with Wazuh

Malware persistence represents one of the most significant challenges in modern cybersecurity defense, enabling attackers to maintain...

Android.Backdoor.916.origin: Espionage Malware Impersonates Russian FSB Antivirus

Malware Analysis

Android.Backdoor.916.origin: Espionage Malware Impersonates Russian FSB Antivirus

A sophisticated Android backdoor, tracked as Android.Backdoor.916.origin, is actively targeting executives of Russian businesses. The malware is...

Microsoft Outlook Mobile Sync Disruption: Analysis of HMA Incident EX1137017

Blue-Team

Microsoft Outlook Mobile Sync Disruption: Analysis of HMA Incident EX1137017

Microsoft is currently addressing a significant service disruption affecting Outlook mobile users who utilize Hybrid Modern Authentication...

Why Email Security Needs an EDR-Style Evolution for Modern Threats

Blue-Team

Why Email Security Needs an EDR-Style Evolution for Modern Threats

The current state of email security is analogous to the endpoint protection landscape a decade ago, relying...

PyPI Implements Domain Monitoring to Thwart Account Hijacking via Expired Domains

Blue-Team

PyPI Implements Domain Monitoring to Thwart Account Hijacking via Expired Domains

The Python Package Index (PyPI) has deployed a new security mechanism to counter a specific form of...

Okta Open-Sources Auth0 Threat Detection Rules for Proactive Security

Blue-Team

Okta Open-Sources Auth0 Threat Detection Rules for Proactive Security

On August 19, 2025, Okta announced the open-source release of a catalog of pre-built Sigma detection rules...

Microsoft’s Removal of PowerShell 2.0: Security Implications and Migration Guidance

Blue-Team

Microsoft’s Removal of PowerShell 2.0: Security Implications and Migration Guidance

Microsoft has confirmed the removal of PowerShell 2.0 from Windows 11 and Windows Server systems starting August...

Microsoft 365 to Block Insecure FPRPC Protocol by Default: Security Implications and Configuration Guide

Blue-Team

Microsoft 365 to Block Insecure FPRPC Protocol by Default: Security Implications and Configuration Guide

Microsoft has announced a significant security update affecting Microsoft 365 applications on Windows platforms. Starting late August...

Hardening Active Directory Against Kerberoasting Attacks

Blue-Team

Hardening Active Directory Against Kerberoasting Attacks

Kerberoasting remains a persistent threat to Active Directory (AD) environments, allowing attackers to crack service account passwords...

Posts pagination

Previous 1 2 3 4 5 6 … 10 Next

Blue-Team

Google’s AI Mode Default Shift: Security Implications for Enterprise Search

Protecting Sensitive Data When Using AI Chatbots: A Technical Guide for Security Professionals

Windows Update Issues: UAC Prompts, System Recovery Failures, and Contested SSD Impacts

Analysis of PromptLock: The First AI-Powered Ransomware Proof-of-Concept

Defending Against Malware Persistence Techniques: A Comprehensive Guide with Wazuh

Android.Backdoor.916.origin: Espionage Malware Impersonates Russian FSB Antivirus

PyPI Implements Domain Monitoring to Thwart Account Hijacking via Expired Domains

Microsoft’s Removal of PowerShell 2.0: Security Implications and Migration Guidance

Microsoft 365 to Block Insecure FPRPC Protocol by Default: Security Implications and Configuration Guide

Hardening Active Directory Against Kerberoasting Attacks

You may have missed

Microsoft Teams Security Hardening: Default Protections and New Defender Features for Early 2026

Docker Hardened Images Become Free and Open Source, Shifting Container Security Baseline

TikTok’s U.S. Divestiture Deal: A Security-Focused Analysis of the New Joint Venture Structure

Critical WatchGuard Firebox RCE Flaw Exploited, CISA Issues Directive