Security

Credit to Author: Microsoft Threat Intelligence| Date: Mon, 06 Oct 2025 17:00:00 +0000

Storm-1175, a financially motivated actor known for deploying Medusa ransomware and exploiting public-facing applications for initial access, was observed exploiting the deserialization vulnerability in GoAnywhere MFT’s License Servlet, tracked as CVE-2025-10035. We are publishing this blog post to increase awareness of this threat and to share end-to-end protection coverage details across Microsoft Defender.

The post Investigating active exploitation of CVE-2025-10035 GoAnywhere Managed File Transfer vulnerability appeared first on Microsoft Security Blog.

Credit to Author: Rob Lefferts| Date: Thu, 02 Oct 2025 17:00:00 +0000

Microsoft has been named a Leader in IDC’s inaugural category for Worldwide Extended Detection and Response (XDR) Software for 2025, recognized for its deep integration, intelligent automation, and unified security operations solutions.

The post Microsoft named a Leader in the IDC MarketScape for XDR appeared first on Microsoft Security Blog.

Credit to Author: Vasu Jakkal| Date: Wed, 01 Oct 2025 16:00:00 +0000

At Microsoft, we believe that cybersecurity is as much about people as it is about technology. Explore some of our resources for Cybersecurity Awareness Month to stay safe online.

The post Cybersecurity Awareness Month: Security starts with you appeared first on Microsoft Security Blog.

Credit to Author: Vasu Jakkal| Date: Tue, 30 Sep 2025 13:00:00 +0000

Microsoft Sentinel is expanding into an agentic platform with general availability of the Sentinel data lake, and the public preview of Sentinel graph and Sentinel Model Context Protocol (MCP) server. 

The post Empowering defenders in the era of agentic AI with Microsoft Sentinel appeared first on Microsoft Security Blog.