Tag: microsoft
-
US Crackdown With Microsoft: Over 100 Russian Domains Seized
In the most recent US crackdown with Microsoft a total of 107 Russian domains have been seized. Reports claim that these domains were mainly used by state sponsored threat actors for malicious purposes. In this article, we’ll dive into the details of the US crackdown, the threat actor behind the malicious initiatives, and more. Let’s……
-
Microsoft Named Most Imitated Brand in Phishing Attacks
The Redmond-based firm was the most impersonated brand in the third quarter of 2024, while Alibaba entered the Top 10 for the first time First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/microsoft-most-imitated-brand/
-
Weitere Dienste betroffen: Microsofts Logging-Datenpanne ist größer als gedacht
Tags: microsoftErst ist nur von fehlenden Protokolldaten bis zum 19. September die Rede gewesen. Laut Microsoft reichen die Logging-Probleme aber bis in den Oktober. First seen on golem.de Jump to article: www.golem.de/news/weitere-dienste-betroffen-microsofts-logging-datenpanne-ist-groesser-als-gedacht-2410-189970.html
-
Daily Cyberattacks Surge to 600 Million
Microsoft has revealed that its customers are subjected to over 600 million cybercriminals and nation-state cyberattacks daily. These threats encompass a broad spectrum of malicious activities, from ransomware and phishing to identity theft. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/nation-state-cyberattacks/
-
macOS HM Surf flaw in TCC allows bypass Safari privacy settings
Microsoft disclosed a flaw in the macOS Apple’s Transparency, Consent, and Control (TCC) framework that could allow it to bypass privacy settings and access user data. Microsoft discovered a vulnerability, tracked as CVE-2024-44133 and code-named ‘HM Surf’, in Apple’s Transparency, Consent, and Control (TCC) framework in macOS. Apple’s Transparency, Consent, and Control framework in macOS…
-
Microsoft Reveals macOS Vulnerability that Bypasses Privacy Controls in Safari Browser
Microsoft has disclosed details about a now-patched security flaw in Apple’s Transparency, Consent, and Control (TCC) framework in macOS that has likely come under exploitation to get around a user’s privacy preferences and access data.The shortcoming, codenamed HM Surf by the tech giant, is tracked as CVE-2024-44133. It was addressed by Apple as part of…
-
Ransomware Attacks Growing More Dangerous, Complex
Attackers launched 600 million cybercriminal and nation-state threats on Microsoft customers daily, including ransomware attacks, in the last year, according to the tech giant. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/microsoft-ransomware-attacks-grew-2024/
-
Breach Roundup: Brazilian Police Arrest USDoD
Also: Internet Archive Limps Back Online, Beware Kerbertoasing and Passkey Takeup. This week, Brazilian police arrested USDoD, Internet Archive is recovering, a Microsoft warning over Kerberoasting and of mounting phishing attacks, Google touted memory safety efforts, Volkswagen said no harm after ransomware attack, and Amazon reported over 175 million customers using passkeys. First seen on…
-
600 Million Daily Cyberattacks: Microsoft’s Alarming Report
Cybersecurity threats have reached unprecedented levels, with Microsoft customers facing more than 600 million cyberattacks daily, according to insights from Microsoft’s latest Digital Defense Report. The report emphasizes that cyber... First seen on securityonline.info Jump to article: securityonline.info/600-million-daily-cyberattacks-microsofts-alarming-report/
-
US-Justiz unterbricht DDoS-Angriffe von Anonymous Sudan, Anklage gegen zwei Personen
Ermittlungserfolg der US-Strafverfolger gegen die Gruppe Anonymous Sudan, die für zahlreiche DDoS-Angriffe (u.a. auf Microsoft, Cloudflare, OpenAI etc.) verantwortlich zeichneten. Es wurde eine Anklage gegen zwei sudanesische Brüder erhoben, denen der Betrieb der Gruppe sowie zahlreiche DDoS-Angriffe zur Last gelegt … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/10/17/us-justiz-unterbricht-ddos-angriffe-von-anonymous-sudan-anklage-gegen-zwei-personen/
-
U.S. Charges Two Sudanese Brothers for Record 35,000 DDoS Attacks
Federal prosecutors in the U.S. have charged two Sudanese brothers with running a distributed denial-of-service (DDoS) botnet for hire that conducted a record 35,000 DDoS attacks in a single year, including those that targeted Microsoft’s services in June 2023.The attacks, which were facilitated by Anonymous Sudan’s “powerful DDoS tool,” singled out critical infrastructure, corporate networks,…
-
Nation-state activity blurring with cybercrime
Microsoft’s Digital Defense Report 2024 noted that Russia ‘outsourced some cyberespionage operations’ against Ukraine to otherwise independent cybercrime gangs. First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366613660/Microsoft-Nation-state-activity-blurring-with-cybercrime
-
USENIX NSDI ’24 Finding Adversarial Inputs for Heuristics using Multi-level Optimization
Authors/Presenters:Pooria Namyar, Microsoft and University of Southern California; Behnaz Arzani and Ryan Beckett, Microsoft; Santiago Segarra, Microsoft and Rice University; Himanshu Raj and Umesh Krishnaswamy, Microsoft; Ramesh Govindan, University of Southern California; Srikanth Kandula, Microsoft Our sincere thanks to USENIX, and the Presenters & Authors for publishing their superb 21st USENIX Symposium on Networked Systems…
-
Microsoft verliert Log-Daten von Sicherheitsprodukten in der Cloud …
Unschöne Geschichte, die mir gerade untergekommen ist. Bei Microsoft hat es einen Bug gegeben, der bewirkte, dass Log-Dateien von Sicherheitsprodukten in der Microsoft-Cloud nicht zuverlässig gespeichert wurden. Das könnte die Erkennung von Bedrohungen verhindern was erneut Sicherheitsbedenken hinsichtlich der … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/10/16/microsoft-verliert-log-daten-von-sicherheitsprodukten-in-der-cloud/
-
Windows 11 24H2: Recall nicht deinstallierbar …
Trotz gegenteiliger Zusicherungen stellt sich momentan heraus, dass Microsofts umstrittene Funktion Recall sich nicht unter Windows 11 24H2 deinstallieren lässt. Zudem scheint Microsoft so etwas wie “Recall für Arme” im Snipping-Tool in Windows eingeschleust zu haben. Ich greife mal die … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/10/16/windows-11-24h2-recall-nicht-deinstallierbar/
-
Cisco confirms ‘ongoing investigation’ after crims brag about selling tons of data
IntelBroker claims the breach impacts Microsoft, SAP, AT&T, Verizon, T-Mobile US, and more First seen on theregister.com Jump to article: www.theregister.com/2024/10/15/cisco_confirm_ongoing_investigation/
-
Nearly 400 US healthcare institutions hit with ransomware over last year, Microsoft says
First seen on therecord.media Jump to article: therecord.media/ransomware-healthcare-microsoft-last-year
-
Cybercriminals Are Increasingly Helping Russia and China Target the US and Allies, Microsoft Says
The growing collaboration between authoritarian governments and criminal hackers has alarmed national security officials and cybersecurity experts. The post Cybercriminals Are Increasingly Helping Russia and China Target the US and Allies, Microsoft Says appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/cybercriminals-are-increasingly-helping-russia-and-china-target-the-us-and-allies-microsoft-says/
-
Generative AI in Security: Risks and Mitigation Strategies
Microsoft’s Siva Sundaramoorthy provides a blueprint for how common cyber precautions apply to generative AI deployed in and around security systems. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/microsoft-generative-ai-security-risk-reduction-isc2/
-
Microsoft says more ransomware stopped before reaching encryption
Volume of attacks still surging though, according to Digital Defense Report First seen on theregister.com Jump to article: www.theregister.com/2024/10/15/microsoft_ransomware_attacks/
-
Ransomware encryption down amid surge of attacks, Microsoft says
The company reported a 300% drop in ransomware attacks that made it to the encryption stage over the past two years. First seen on cyberscoop.com Jump to article: cyberscoop.com/ransomware-encryption-down-attacks-up-nation-state-crime/
-
Nation-States Team Up with Cybercriminals for Attacks
Microsoft has observed nation states ramping up cooperation with cybercriminals to conduct operations in the past year First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/nation-states-cybercriminals/
-
Microsoft Entra Privileged Identity Management – Admin-Konten in Azure, Entra ID und Microsoft 365 schützen
First seen on security-insider.de Jump to article: www.security-insider.de/microsoft-entra-pim-sicheres-zugriffsmanagement-a-8bf8ee48bc6d6d40ca2ede4779b4ff89/
-
One-year countdown to ‘biggest Ctrl-Alt-Delete in history’ as Windows 10 approaches end of support
Microsoft’s hardware compatibility gamble still hasn’t paid off First seen on theregister.com Jump to article: www.theregister.com/2024/10/14/final_year_windows_10/
-
Schools Grapple With Thousands of Cyberattacks Weekly
Education, including K-12 schools and universities, has become the third most targeted sector due to the high variety of sensitive data it stores in its databases. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/microsoft-k-12-universities-grapple-with-thousands-attacks-weekly
-
ConfusedPilot Attack Can Manipulate RAG-Based AI Systems
Attackers can introduce a malicious document in systems such as Microsoft 365 Copilot to confuse the system, potentially leading to widespread misinformation and compromised decision-making processes. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/confusedpilot-attack-manipulate-rag-based-ai-systems
-
MacOS Sequoia hat ein Problem mit Microsoft Office: So löst du es
First seen on t3n.de Jump to article: t3n.de/news/macos-sequoia-hat-ein-problem-mit-microsoft-office-so-loest-du-es-1651144/
-
OilRig Exploits Windows Kernel Flaw in Espionage Campaign Targeting UAE and Gulf
The Iranian threat actor known as OilRig has been observed exploiting a now-patched privilege escalation flaw impacting the Windows Kernel as part of a cyber espionage campaign targeting the U.A.E. and the broader Gulf region.”The group utilizes sophisticated tactics that include deploying a backdoor that leverages Microsoft Exchange servers for credentials theft, and exploiting vulnerabilities…