Microsoft has observed a surge in attacks using the ACR Stealer malware to steal browser-stored passwords, authentication ...
From late April 2026 to mid-June 2026, Microsoft Defender Experts observed increased ACR Stealer activity across customer ...
Microsoft maps three Salesforce intrusion paths that abuse OAuth apps, vendor tokens, and guest access while ordinary sign-in ...
Microsoft Threat Intelligence identified threat actor activity with overlapping tradecraft commonly associated with ...