Microsoft

5 reports

All LLM Security Industry News Agentic AI Research Supply Chain Prompt Injection Regulatory Adversarial ML Jailbreaks First Look: Security Model Theft Data Poisoning

ATLAS OWASP CRITICAL Ars Technica Security Jun 09, 2026 ▲ 8.5

Miasma Worm Targets AI Coding Agents via Poisoned Microsoft Packages

Seventy-three Microsoft-hosted open source packages were compromised with the Miasma credential-stealing worm, which activates specifically when developers open packages inside AI coding agents. The …

AML.T0010 - ML Supply Chain Compromise AML.T0012 - Valid Accounts AML.T0047 - ML-Enabled Product or Service

ATLAS OWASP MEDIUM The Hacker News May 22, 2026 ▲ 7.2

Microsoft Open-Sources RAMPART and Clarity to Harden AI Agent Security

Microsoft has released two open-source tools, RAMPART and Clarity, aimed at embedding security testing into AI agent development workflows. RAMPART extends the existing PyRIT framework with a …

AML.T0051 - LLM Prompt Injection AML.T0057 - LLM Data Leakage AML.T0047 - ML-Enabled Product or Service

ATLAS OWASP HIGH The Hacker News May 14, 2026 ▲ 7.8

Microsoft MDASH Agentic AI System Discovers 16 Critical Windows Vulnerabilities

Microsoft has disclosed MDASH, a multi-model agentic AI scanning system that autonomously discovered 16 vulnerabilities patched in May 2026's Patch Tuesday, including two critical RCE flaws. The …

AML.T0047 - ML-Enabled Product or Service AML.T0040 - ML Model Inference API Access AML.T0043 - Craft Adversarial Data

ATLAS OWASP CRITICAL Microsoft Security Blog May 08, 2026 ▲ 9.2

Prompt Injection Achieves Remote Code Execution in Semantic Kernel Agent Framework

Microsoft's Defender Security Research Team disclosed two CVEs in Semantic Kernel — a widely-used AI agent orchestration framework — demonstrating how prompt injection can escalate to remote code …

AML.T0051 - LLM Prompt Injection AML.T0047 - ML-Enabled Product or Service AML.T0043 - Craft Adversarial Data

ATLAS OWASP HIGH SecurityWeek May 04, 2026 ▲ 6.5

Pentagon Deploys Classified AI Across Seven Tech Giants for Warfighter Systems

The US Department of Defense has formalised agreements with seven major technology companies — including Google, Microsoft, OpenAI, and Amazon Web Services — to integrate AI into classified military …

AML.T0010 - ML Supply Chain Compromise AML.T0047 - ML-Enabled Product or Service AML.T0040 - ML Model Inference API Access