Star Blizzard increases sophistication and evasion in ongoing attacks
Microsoft Threat Intelligence continues to track and disrupt malicious activity attributed to a Russian state-sponsored actor we track as Star...
News
Patching Perforce perforations: Critical RCE vulnerability discovered in Perforce Helix Core Server
Microsoft discovered, responsibly disclosed, and helped remediate four vulnerabilities that could be remotely exploited by unauthenticated attackers in Perforce Helix...
Financially motivated threat actors misusing App Installer
Since mid-November 2023, Microsoft Threat Intelligence has observed threat actors, including financially motivated actors like Storm-0569, Storm-1113, Sangria Tempest, and...
Join us at InfoSec Jupyterthon 2024
Jupyter notebooks are continuing to grow in popularity in information security as an alternative or supplement to mainstream security operations...
Staying ahead of threat actors in the age of AI
Over the last year, the speed, scale, and sophistication of attacks has increased alongside the rapid development and adoption of...
New TTPs observed in Mint Sandstorm campaign targeting high-profile individuals at universities and research orgs
Since November 2023, Microsoft has observed a distinct subset of Mint Sandstorm (PHOSPHORUS) targeting high-profile individuals working on Middle Eastern...
Midnight Blizzard: Guidance for responders on nation-state attack
The Microsoft security team detected a nation-state attack on our corporate systems on January 12, 2024, and immediately activated our...
US-CERT Vulnerability Summary for the Week of March 4, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Fake Leather Wallet App On Apple App Store Is A Crypto Drainer
The developers of the Leather cryptocurrency wallet are warning of a fake app on the Apple App Store, with users...
Duvel Says It Has More Than Enough Beer After Ransomware Attack
Duvel Moortgat Brewery was hit by a ransomware attack late last night, bringing to a halt the beer production in...
Hacked WordPress Sites Use Visitors Browsers To Hack Other Sites
Hackers are conducting widescale attacks on WordPress sites to inject scripts that force visitors' browsers to bruteforce passwords for other...
Vmware Fixes Critical Sandbox Escape Flaws In Esxi Workstation And Fusion
VMware released security updates to fix critical sandbox escape vulnerabilities in VMware ESXi, Workstation, Fusion, and Cloud Foundation products, allowing...
Canadas Anti Money Laundering Agency Offline After Cyberattack
The Financial Transactions and Reports Analysis Centre of Canada (FINTRAC) has announced that a "cyber incident" forced it to take...
Hackers Impersonate Us Government Agencies In Bec Attacks
A gang of hackers specialized in business email compromise (BEC) attacks and tracked as TA4903 has been impersonating various U.S....
Switzerland Play Ransomware Leaked 65 000 Government Documents
The National Cyber Security Centre (NCSC) of Switzerland has released a report on its analysis of a data breach following...
Petsmart Warns Of Credential Stuffing Attacks Trying To Hack Accounts
Pet retail giant PetSmart is warning some customers their passwords were reset due to an ongoing credential stuffing attack attempting...
Qnap Warns Of Critical Auth Bypass Flaw In Its Nas Devices
QNAP warns of vulnerabilities in its NAS software products, including QTS, QuTS hero, QuTScloud, and myQNAPcloud, that could allow attackers...
Cisa Nsa Share Best Practices For Securing Cloud Services
The NSA and the Cybersecurity and Infrastructure Security Agency (CISA) have released five joint cybersecurity bulletins containing on best practices...
Magnet Goblin Hackers Use 1 Day Flaws To Drop Custom Linux Malware
Image: Midjourney A financially motivated hacking group named Magnet Goblin uses various 1-day vulnerabilities to breach public-facing servers and deploy...
Fbi Us Lost Record 125 Billion To Online Crime In 2023
FBI's Internet Crime Complaint Center (IC3) has released its 2023 Internet Crime Report, which recorded a 22% increase in reported...
Hackers Target Docker Hadoop Redis Confluence With New Golang Malware
Hackers are targeting misconfigured servers running Apache Hadoop YARN, Docker, Confluence, or Redis with new Golang-based malware that automates the...
Hackers Exploit WordPress Plugin Flaw To Infect 3 300 Sites With Malware
Hackers are breaching WordPress sites by exploiting a vulnerability in outdated versions of the Popup Builder plugin, infecting over 3,300...
Anycubic Fixes Exploited 3d Printer Zero Day Flaw With New Firmware
AnyCubic has released new Kobra 2 firmware to fix a zero-day vulnerability exploited last month to print security warnings on...
Critical Teamcity Flaw Now Widely Exploited To Create Admin Accounts
Hackers have started to exploit the critical-severity authentication bypass vulnerability (CVE-2024-27198) in TeamCity On-Premises, which JetBrains addressed in an update...
