Microsoft patches Exchange Server zero-day exploited in attacks

Microsoft has patched an actively exploited Exchange Server vulnerability that allows threat actors to execute arbitrary JavaScript code in cross-site scripting (XSS) attacks targeting Outlook Web ...
The Hacker News

Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues

Microsoft confirms it temporarily removed GitHub repos after Miasma worm compromised 73 of its open-source projects to inject ...

Microsoft spends $130M on Goodyear land to expand West Valley data center footprint

Preview this article 1 min The latest site acquired is adjacent to land Microsoft already owns. The tech company has now ...
The Caledonian-Record

Bill Gates arrives for testimony in a congressional panel's Jeffrey Epstein investigation

Bill Gates has arrived at the Capitol to speak before a congressional panel investigating the Jeffrey Epstein files, becoming the latest powerful figure linked to the disgraced financier to testify.
The Hacker News

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...
Telegraph Herald

Nvidia bets on AI personal computers with new chip powering Windows laptops

Nvidia has unveiled powerful new chips to bring advanced artificial intelligence to Windows laptops and desktops. These ...
Developer Tech

Anthropic says AI can turn software patches into exploits within hours

Anthropic’s AI turned Firefox and Windows software patches into exploits within hours, including one Windows proof-of-concept ...
Dark Reading

'Hades' Campaign Against PyPI Puts New Spin on Shai-Hulud

Threat actors have struck the software supply chain yet again, this time hitting the Python Package Index (PyPI) with Mini Shai-Hulud in an attempt to spread poisoned code. In the latest campaign, ...
Redmondmag.com

Supply Chain Attack Hits Microsoft GitHub Repos, AI Coding Tools

GitHub disabled 73 Microsoft repositories on June 5 after a malicious commit landed in an Azure project, in what researchers described as a supply chain attack aimed at developer workstations and AI ...