All posts tagged "Microsoft"
-
2.0KCyber AttackRussian Hackers Targeting Diplomatic Entities in Europe, Americas, and Asia
A Russian state-sponsored threat actor has been observed targeting diplomatic and government entities as part of a series of phishing campaigns commencing...
-
2.4KCyber AttackMicrosoft Documents Over 200 Cyberattacks by Russia Against Ukraine
At least six different Russia-aligned actors launched no less than 237 cyberattacks against Ukraine from February 23 to April 8, including 38...
-
3.0KVulnerabilitiesMicrosoft Discovers New Privilege Escalation Flaws in Linux Operating System
Microsoft on Tuesday disclosed a set of two privilege escalation vulnerabilities in the Linux operating system that could potentially allow threat actors...
-
1.4KMalwareEmotet Testing New Delivery Ideas After Microsoft Disables VBA Macros by Default
The threat actor behind the prolific Emotet botnet is testing new attack methods on a small scale before co-opting them into their...
-
4.5KVulnerabilitiesHackers Exploiting Recently Reported Windows Print Spooler Vulnerability in the Wild
A security flaw in the Windows Print Spooler component that was patched by Microsoft in February is being actively exploited in the...
-
4.2KMalwareMicrosoft Disrupts ZLoader Cybercrime Botnet in Global Operation
Microsoft and a consortium of cybersecurity companies took legal and technical steps to disrupt the ZLoader botnet, seizing control of 65 domains...
-
2.3KData BreachMicrosoft and Okta Confirm Breach by LAPSUS$ Extortion Group
Microsoft on Tuesday confirmed that the LAPSUS$ extortion-focused hacking crew had gained “limited access” to its systems, as authentication services provider Okta...
-
3.6KCyber AttackMicrosoft Finds FoxBlade Malware Hit Ukraine Hours Before Russian Invasion
UPDATE: It’s worth noting that the malware Microsoft tracks as FoxBlade is the same as the data wiper that’s been denominated HermeticWiper...
-
2.1KMalwareMicrosoft Warns of ‘Ice Phishing’ Threat on Web3 and Decentralized Networks
Microsoft has warned of emerging threats in the Web3 landscape, including “ice phishing” campaigns, as a surge in adoption of blockchain and...
-
3.1KMalwareMicrosoft Disables Internet Macros in Office Apps by Default to Block Malware Attacks
Microsoft on Monday said it’s taking steps to disable Visual Basic for Applications (VBA) macros by default across its products, including Word,...
-
909MalwareMicrosoft Temporarily Disables MSIX App Installers to Prevent Malware Abuse
Microsoft last week announced that it’s temporarily disabling the MSIX ms-appinstaller protocol handler in Windows following evidence that a security vulnerability in...
-
3.9KMalwareNew Variant of UpdateAgent Malware Infects Mac Computers with Adware
Microsoft on Wednesday shed light on a previously undocumented Mac trojan that it said has undergone several iterations since its first appearance...
-
499VulnerabilitiesHow Wazuh Can Improve Digital Security for Businesses
2021 was a year peppered by cyberattacks, with numerous data breaches happening. Not only that, but ransomware has also become a prominent...
-
1.5KVulnerabilitiesHackers Attempt to Exploit New SolarWinds Serv-U Bug in Log4Shell Attacks
Microsoft on Wednesday disclosed details of a new security vulnerability in SolarWinds Serv-U software that it said was being weaponized by threat...
-
1.9KGeek9-year-old Windows flaw abused to drop ZLoader malware in 111 countries
The vulnerability was identified and fixed in 2013 but in 2014 Microsoft revised the fix allowing Malsmoke hackers in 2022 to spread...
-
3.9KCyber AttackMicrosoft Warns of Continued Attacks Exploiting Apache Log4j Vulnerabilities
Microsoft is warning of continuing attempts by nation-state adversaries and commodity attackers to take advantage of security vulnerabilities uncovered in the Log4j...
-
2.9KData SecurityAttackers bypass Microsoft security patch to drop Formbook malware
The patch was issued for CVE-2021-40444 to prevent the execution of code that downloaded the Microsoft Cabinet (CAB) archive containing a malicious...
-
3.4KCyber AttackHackers Using Malicious IIS Server Module to Steal Microsoft Exchange Credentials
Malicious actors are deploying a previously undiscovered binary, an Internet Information Services (IIS) webserver module dubbed “Owowa,” on Microsoft Exchange Outlook Web...
-
4.8KMalwareMicrosoft Issues Windows Update to Patch 0-Day Used to Spread Emotet Malware
Microsoft has rolled out Patch Tuesday updates to address multiple security vulnerabilities in Windows and other software, including one actively exploited flaw...
-
588MalwareMicrosoft Details Building Blocks of Widely Active Qakbot Banking Trojan
Infection chains associated with the multi-purpose Qakbot malware have been broken down into “distinct building blocks,” an effort that Microsoft said will...
-
3.2KData SecurityFake KPSPico Windows activator tool KPSPico steals crypto wallet data
The malware is dubbed CrypBot is essentially an information stealer that can obtain credentials for cryptocurrency wallets, browsers, credit cards, browser cookies,...
