Content by microsoft incident response (5)

Microsoft Incident Response (DART) investigates a Microsoft Teams voice-phishing incident where an attacker impersonated IT support, used Quick Assist for remote access, and stole credentials via a spoofed site—then shares concrete defensive steps to reduce this kind of identity-led compromise.

Microsoft Incident Response presents a comprehensive analysis of prompt abuse in AI tools, offering practical mitigation strategies and demonstrating how to leverage Microsoft’s security stack to detect, investigate, and respond to such incidents.

Microsoft Incident Response outlines how fake employees gained access to corporate resources and the security measures the team used to detect and neutralize the threat. The analysis provides practical guidance for organizations facing similar cyber risks.

Microsoft Incident Response’s DART team, led by their security researchers, uncovers and analyzes SesameOp—a covert backdoor abusing the OpenAI Assistants API for command and control, with detailed technical breakdown and defense guidance.

Microsoft Incident Response’s expert team details how a single alert in a retail environment led to the discovery of a persistent threat. This report highlights actionable forensic insights and security guidance for practitioners.