Dark Reading

Microsoft Graph API Emerges as a Top Attacker Tool to Plot Data Theft

Nation-state espionage operations are increasingly using native Microsoft services to host their command-and-control (C2) needs. A number of unrelated groups in recent years have all come to the same ...
Infosecurity-magazine.com

Phishing Campaign Uses Havoc Framework to Control Infected Systems

A new phishing campaign leveraging the open-source Havoc command-and-control (C2) framework has been discovered. Attackers are using modified versions of Havoc Demon Agent alongside Microsoft Graph ...
InfoWorld

Using Microsoft Graph search with SharePoint Online

Microsoft Graph provides one unified API to search all content in SharePoint, OneDrive, Outlook, and other Microsoft 365 services. That changes how we build SharePoint applications. SharePoint’s role ...
CSOonline

New family of data-stealing malware leverages Microsoft Outlook

CISOs have yet another attack vector to worry about with the discovery of a new family of data-stealing malware that uses Microsoft Outlook as a communications channel through abusing the Graph API, ...
Bleeping Computer

Microsoft releases new APIs for managing Windows Update

New Microsoft Graph APIs released today in public preview allow developers and IT professionals to manage Windows 10 updates and expedite Windows 10 security updates in enterprise environments.