Microsoft warns hackers are exploiting password resets to gain access to user accounts

Storm-2949 is engaged in a "methodical, sophisticated, and multi-layered" campaign ...

Microsoft Reveals How One Hacked Identity Triggered a Massive Cloud-Wide Breach

Microsoft says Storm-2949 used one hacked identity to infiltrate cloud systems, steal sensitive data, and spread across Azure ...
Windows Report

Microsoft Warns Storm-2949 Is Stealing Data From Microsoft 365 And Azure

Microsoft says Storm-2949 targets Microsoft 365 and Azure environments using MFA abuse, password resets, and cloud data theft ...

Microsoft Self-Service Password Reset abused in Azure data theft attacks

A threat actor targeting Microsoft 365 and Azure production environments is stealing data in attacks that abuse legitimate ...
Neowin

SQL Server on Linux gets a vital security update for Azure Key Vault integration

Microsoft has made managing encryption keys more secure for users running SQL Server 2022 CU18 and later on Azure Linux Virtual Machines with Managed Identity. Microsoft has announced that SQL Server ...
Hosted on MSN

Azure Key Vault Updates Secure Kubernetes and AI Pipelines in 2026

In 2026, Azure has fundamentally shifted how developers handle secrets, moving away from brittle, manual injection methods toward a fully automated, identity-centric model. With new Key Vault features ...