Bubble AI app builder abused to steal Microsoft account credentials

Threat actors are evading phishing detection in campaigns targeting Microsoft accounts by abusing the no-code app-building ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$.
WinBuzzer

Microsoft Ends Exchange Multi-Version Support in Major Overhaul

Microsoft has ended multi-version Exchange Server co-existence, introduced mandatory security hardening, and reaffirmed ...