Tag: microsoft
-
Mysterious Elephant Using Hajj-Themed Bait in Attacks
Group Deploys Upgraded Malware Disguised as Microsoft File on Pilgrimage Goers. A South Asian threat actor identified as Mysterious Elephant or APT-K-47 by Knownsec 404 researchers is using a Hajj-themed lure to trick victims into malicious payload disguised as a Windows file. The hacker is using upgraded Asyncshell malware disguised as a Microsoft Compiled HTML…
-
New Windows 10 0x80073CFA fix requires installing WinAppSDK 3 times
by
in SecurityNewsMicrosoft has shared a new method to fix a bug preventing app uninstalls or updates on Windows 10 for those unwilling to deploy this month’s preview update. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/new-windows-10-0x80073cfa-fix-requires-installing-winappsdk-3-times/
-
Microsoft president asks Trump to “push harder” against Russian hacks
by
in SecurityNewsBrad Smith wants US to take a tougher approach to state-sponsored cyberattacks. First seen on arstechnica.com Jump to article: arstechnica.com/security/2024/11/microsoft-president-asks-trump-to-push-harder-against-russian-hacks/
-
Weaponized pen testers are becoming a new hacker staple
by
in SecurityNews
Tags: access, attack, cloud, credentials, defense, google, hacker, iam, intelligence, linux, macOS, malicious, malware, microsoft, open-source, password, penetration-testing, RedTeam, software, strategy, threat, tool, vulnerability, windowsMalicious adaptations of popular red teaming tools like Cobalt Strike and Metasploit are causing substantial disruption, emerging as a dominant strategy in malware campaigns.According to research by threat-hunting firm Elastic, known for its search-powered solutions, these two conventional penetration testing tools were weaponized to account for almost half of all malware activities in 2024.”The most…
-
Analysis: Microsoft Won’t Evict Security Vendors From The Windows Kernel Anytime Soon
by
in SecurityNewsMicrosoft is taking steps to provide an alternative way for endpoint security vendors to operate in Windows following the massive July outage, but there are no signs this new option will become compulsory in the near future. First seen on crn.com Jump to article: www.crn.com/news/security/2024/analysis-microsoft-won-t-evict-security-vendors-from-the-windows-kernel-anytime-soon
-
November 2024 Patch Tuesday Fixes Actively Exploited Flaws (CVE-2024-49039)
by
in SecurityNewsIn its November 2024 Patch Tuesday update, Microsoft addressed 90 security vulnerabilities, including two critical zero-day exploits currently being actively exploited in the wild (CVE-2024-49039 and CVE-2024-49039). This also update includes fixes for issues impacting Windows NT LAN Manager (NTLM)… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/november-2024-patch-tuesday-cve-2024-49039/
-
Microsoft blocks Windows 11 24H2 on some PCs with USB scanners
Microsoft now blocks the Windows 11 24H2 update on computers with standalone scanners, multi-function printers, fax machines, modems, and other network devices with eSCL protocol support. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-blocks-windows-11-24h2-on-some-pcs-with-usb-scanners/
-
Microsoft asks Windows Insiders to try out the controversial Recall feature
by
in SecurityNewsParticipants of the Windows Insider Program that have a Qualcomm Snapdragon-powered Copilot+ PC can now try out Recall, the infamous snapshot-taking, AI-powered feature that … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/11/25/microsoft-windows-insiders-try-out-windows-recall/
-
Microsoft 365 outage impacts Exchange Online, Teams, Sharepoint
by
in SecurityNewsMicrosoft is working on fixing an ongoing and widespread Microsoft 365 outage that is impacting multiple services and features, including Exchange Online, Microsoft Teams, and SharePoint Online. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-365-outage-impacts-exchange-online-teams-sharepoint/
-
CISA adds Microsoft SharePoint vulnerability to the KEV Catalog
by
in SecurityNews
Tags: access, cisa, cyber, cybersecurity, exploit, infrastructure, kev, microsoft, remote-code-execution, threat, vulnerabilityIn late October, the United States Cybersecurity & Infrastructure Security Agency (CISA) added a new threat to its Known Exploited Vulnerability (KEV) Catalog. Cyber criminals used remote code execution vulnerability in Microsoft SharePoint to gain access to organizations’ networks. The… First seen on securityintelligence.com Jump to article: securityintelligence.com/news/cisa-adds-microsoft-sharepoint-vulnerability-to-kev-catalog/
-
XSS Vulnerability in Bing.com Let Attackers Send Crafted Malicious Requests
by
in SecurityNewsA significant XSS vulnerability was recently uncovered in Microsoft’s Bing.com, potentially allowing attackers to execute malicious JavaScript and send crafted requests to interconnected Microsoft applications like Outlook, OneDrive, and Copilot. The exploit leveraged the trust placed in Bing’s root domain (www.bing.com) as an allowed origin across Microsoft’s ecosystem, posing a significant security risk. The Research…
-
Berechtigungschaos: Copilot lässt Mitarbeiter die E-Mails ihres Chefs lesen
by
in SecurityNewsAuch Personaldaten sind oft nicht so geschützt wie erwartet. Microsoft weist die Schuld von sich und sieht Administratoren in der Pflicht. First seen on golem.de Jump to article: www.golem.de/news/berechtigungschaos-copilot-laesst-mitarbeiter-die-e-mails-ihres-chefs-lesen-2411-191096.html
-
North Korea’s Cyber Evolution and China’s Storm-2077 Unveiled by Microsoft Analysts
by
in SecurityNews
Tags: attack, china, cyber, cybersecurity, intelligence, korea, microsoft, north-korea, strategy, tactics, threatMicrosoft Threat Intelligence analysts has shared new insights into North Korean and Chinese threat actors. At the recent CYBERWARCON, cybersecurity analyst shared details into the rise of attacks, the evolution of threat actor tactics, and the strategies employed by various state-backed groups. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/microsoft-insights-on-chinese-threat-actor/
-
Now’s your chance to try Microsoft’s controversial Windows Recall … maybe
by
in SecurityNewsLike its AI, this automated screenshotter and logger is a feature not exactly everyone wanted First seen on theregister.com Jump to article: www.theregister.com/2024/11/22/microsoft_recall_release/
-
101 Videoclips zu Identity-Protection
Die zunehmende Popularität des Windows-Server-Betriebssystems für das Bereitstellen grundlegender Datei- und Druckfreigabedienste sowie anderer Back-Office-Dienste wie E-Mail, Messaging und Zusammenarbeit hat dazu beigetragen, dass Active-Directory (AD) zum bevorzugten Netzwerkverzeichnis wurde. Microsoft hat praktisch alle seine beliebten Anwendungen so weiterentwickelt, dass sie sich auf AD stützen, sodass AD heute einer der am weitesten verbreiteten Softwaredienste in…
-
Windows 11 24H2 update blocked on PCs with Assassin’s Creed, Star Wars Outlaws
by
in SecurityNewsMicrosoft is blocking the Windows 11 24H2 update on computers with some Ubisoft games, like Assassin’s Creed, Star Wars Outlaws, and Avatar: Frontiers of Pandora, after changes in the operating system cause the games to crash, freeze, or have audio issues. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-halts-windows-11-24h2-update-on-pcs-assassins-creed-star-wars-outlaws/
-
Microsoft testing Windows 11 support for third-party passkeys
Microsoft is now testing WebAuthn API updates that add support for support for using third-party passkey providers for Windows 11 passwordless authentication. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/microsoft-testing-windows-11-support-for-third-party-passkeys/
-
Google Exposes GLASSBRIDGE: A Pro-China Influence Network of Fake News Sites
by
in SecurityNewsGovernment agencies and non-governmental organizations in the United States have become the target of a nascent China state threat actor known as Storm-2077.The adversary, believed to be active since at least January 2024, has also conducted cyber attacks against the Defense Industrial Base (DIB), aviation, telecommunications, and financial and legal services across the world, Microsoft…
-
Microsoft seized 240 sites used by the ONNX phishing service
by
in SecurityNewsMicrosoft disrupted the ONNX phishing service, seizing 240 sites and naming an Egyptian man as the operator behind the operation. Microsoft announced the disruption of the ONNX phishing service, another success against cybercrime which led to the seizure of 240 sites. The IT giant also identified and publicly disclosed the identity of an Egyptian man,…
-
Microsoft flashes Win10 users with more full-screen ads for Windows 11
by
in SecurityNewsNever mind ESU… how about that upgrade? First seen on theregister.com Jump to article: www.theregister.com/2024/11/21/windows_11_fs_ad/
-
Microsoft Takes Down >>ONNX<< Phishing-as-a-Service Operation
by
in SecurityNewsMicrosoft’s Digital Crimes Unit (DCU) has struck a significant blow against the cybercrime supply chain, seizing 240 fraudulent websites and disrupting a major player in the >>Phishing-as-a-Service
-
Windows 10 KB5046714 update fixes bug preventing app uninstalls
by
in SecurityNewsMicrosoft has released the optional KB5046714 Preview cumulative update for Windows 10 22H2 with six bug fixes, including a fix for a bug preventing users from uninstalling or updating packaged applications. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/windows-10-kb5046714-update-fixes-bug-preventing-app-uninstalls/
-
New Microsoft tool allows remote fixes for unbootable devices
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/new-microsoft-tool-allows-remote-fixes-for-unbootable-devices
-
Microsoft rolls out Recall to Windows Insiders with Copilot+ PCs
by
in SecurityNewsMicrosoft announced today that its controversial AI-powered Recall feature is finally rolling out to Windows Insiders in the Dev Channel using Snapdragon-powered Copilot+ PCs. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-rolls-out-recall-to-windows-insiders-with-copilot-plus-pcs/
-
APT47 Uses Hajj-Themed Lures to Deliver Advanced Asyncshell Malware
The threat actor known as Mysterious Elephant has been observed using an advanced version of malware called Asynshell.The attack campaign is said to have used Hajj-themed lures to trick victims into executing a malicious payload under the guise of a Microsoft Compiled HTML Help (CHM) file, the Knownsec 404 team said in an analysis published…
-
Microsoft unveils resiliency, security enhancements following July global IT outage
by
in SecurityNewsThe updates are;part of a larger effort at the company to overhaul its internal security culture. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/microsoft-resiliency-security-updates/733605/
-
Cybersecurity Snapshot: Prompt Injection and Data Disclosure Top OWASP’s List of Cyber Risks for GenAI LLM Apps
by
in SecurityNews
Tags: access, advisory, ai, application-security, attack, backup, best-practice, breach, cisa, cloud, computer, cve, cyber, cyberattack, cybercrime, cybersecurity, data, exploit, extortion, firewall, framework, governance, government, group, guide, Hardware, incident, incident response, infrastructure, injection, intelligence, Internet, LLM, malicious, microsoft, mitigation, mitre, monitoring, network, nist, office, open-source, powershell, privacy, ransomware, regulation, risk, risk-management, russia, service, skills, software, sql, strategy, supply-chain, tactics, technology, theft, threat, tool, update, vulnerability, vulnerability-management, windowsDon’t miss OWASP’s update to its “Top 10 Risks for LLMs” list. Plus, the ranking of the most harmful software weaknesses is out. Meanwhile, critical infrastructure orgs have a new framework for using AI securely. And get the latest on the BianLian ransomware gang and on the challenges of protecting water and transportation systems against…