Tycoon2FA has returned with new device-code phishing attacks targeting Microsoft 365 users through legitimate OAuth login flows.
FrostyNeighbor, a long-running cyberespionage actor apparently aligned with the interests of Belarus, has been active recently in campaigns targeting governmental organizations in Ukraine.This latest ...
Researchers say the campaign uses a browser-based JavaScript VM to hide credential theft and intercept MFA at scale.
The Tycoon2FA phishing kit now supports device-code phishing attacks and abuses Trustifi click-tracking URLs to hijack ...
Microsoft has disclosed a new security vulnerability impacting on-premise versions of Exchange Server that it said has come ...
Microsoft confirmed on May 14 that CVE-2026-42897 — a cross-site scripting flaw in the Outlook Web Access component of Exchange Server 2016, 2019, and Subscription Edition — is under active ...
A newly discovered zero-day vulnerability in Microsoft Exchange Server has experts declaring an emergency and urging CSOs to ...
Microsoft is working to patch CVE-2026-42897, an Exchange Server zero-day vulnerability that has been exploited in attacks.
BrowserAct Open-Sources Two AI Skills That Let Agents Actually Use the Web - Including One That Builds New Skills on Its Own ...
If you find managing your email annoying, it might be time to switch to another client. Be more productive with one of the top email apps we've tested. I've been testing PC and mobile software for ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results