Large Language Models are increasingly being paired with bespoke tools and technical harnesses that can help manage, guide and direct their cybersecurity work. (Image Source: Getty)
Microsoft, with law enforcement and industry partners, disrupted more than 200 command and control servers for Amadey and StealC, often used in conjunction.
Kali365, which was first observed in April, abuses legitimate Microsoft device authorization pages to grant persistent access to cybercriminal-controlled applications.
It’s been difficult early on to separate signal from noise, even if the attack on the medical device maker looks like a qualified success for the attackers.
Microsoft and authorities dismantled Tycoon 2FA’s infrastructure. A seizure notice is displayed on of the phishing platform’s domains March 4, 2026. (Microsoft)
Microsoft, which led the effort, said it seized 330 domains that powered the phishing platform’s core infrastructure. The alleged creator was also named in a civil complaint.