Microsoft

Analysis of active exploitation of SolarWinds Web Help Desk

We are seeing exploitation of SolarWinds Web Help Desk via CVE‑2025‑40551 and CVE‑2025‑40536 that can lead to domain compromise; here is how to patch, hunt, and mitigate now.
Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
The Hacker News

Konni Hackers Deploy AI-Generated PowerShell Backdoor Against Blockchain Developers

The North Korean threat actor known as Konni has been observed using PowerShell malware generated using artificial intelligence (AI) tools to target developers and engineering teams in the blockchain ...
GitHub

GitHub - yobyot/ExoAliasManagement: PowerShell module for managing Exchange Online email aliases.

ExoAliasManagement provides a set of functions to find, add, and remove email aliases from Exchange Online mailboxes. The module uses interactive authentication for Exchange Online connections and ...
GitHub

PowerShell Module for Power Platform Dataverse

Through PowerShell Script modules (.psm1) which use the core framework Cmdlets. Interactive login using Username and Password. For terminal-only clients provide the parameter UseDeviceCode the login ...