FBI warns Microsoft users about passwordless scam

The FBI warns about Kali365, a phishing scam targeting Microsoft 365 accounts that can bypass multifactor authentication ...

Your Microsoft text codes are going away

Microsoft says it will phase out SMS codes for personal account sign-ins, urging users to switch to passkeys for better protection against scammers.
InfoWorld

Understanding Microsoft’s Trusted Signing service

How do we ensure that the code we’re installing is, at the very least, the code that a vendor shipped? The generally accepted solution is code signing, adding a digital signature to binaries that can ...
Redmond Magazine

Microsoft Disrupts Fox Tempest Malware-Signing Service Used in Ransomware Attacks

Microsoft disrupted Fox Tempest's malware-signing service used to legitimize ransomware attacks. Fraudulent code-signing certificates helped malware bypass trust signals and security checks.