Microsoft

Typosquatted npm packages used to steal cloud and CI/CD secrets

Microsoft has identified an active supply chain attack targeting the npm package ecosystem. On May 28, 2026, a single threat actor operating under the newly created maintainer alias vpmdhaj (a39155771 ...
The Verge

Here’s what Microsoft is offering long-serving employees to voluntarily retire

Some Microsoft employees will be offered a package of healthcare, cash, and stock vesting if they voluntarily retire. Some Microsoft employees will be offered a package of healthcare, cash, and stock ...