Content by Microsoft Threat Intelligence and Microsoft Defender Security Research Team (2)

Mitigating the Axios npm supply chain compromise

by Microsoft Threat Intelligence and Microsoft Defender Security Research Team
Microsoft Threat Intelligence and Microsoft Defender Security Research Team details how malicious Axios npm releases (1.14.1 and 0.30.4) pulled second-stage RAT payloads from Sapphire Sleet infrastructure, and provides concrete mitigation steps plus Defender/Sentinel hunting guidance to detect and contain impacted developer machines and CI/CD systems.
News

Inside Tycoon2FA: How a Leading AiTM Phishing Kit Operated at Scale

by Microsoft Threat Intelligence and Microsoft Defender Security Research Team
The Microsoft Threat Intelligence and Defender Security Research Team provide a comprehensive overview of Tycoon2FA, a sophisticated phishing-as-a-service platform. This resource offers technical breakdowns, impact analysis, and Microsoft-centric defense recommendations for security professionals.
News

End of content

Rejoining the server...

Rejoin failed... trying again in seconds.

Failed to rejoin.
Please retry or reload the page.

The session has been paused by the server.

Failed to resume the session.
Please reload the page.