Tag: microsoft
-
240+ Domains Used By PhaaS Platform ONNX Seized by Microsoft
by
in SecurityNewsMicrosoft’s Digital Crimes Unit (DCU) has disrupted a significant phishing-as-a-service (PhaaS) operation run by Egypt-based cybercriminal Abanoub Nady, known online as >>MRxC0DER.>do-it-yourself>ONNX
-
Microsoft Highlights Security Exposure Management at Ignite
by
in SecurityNews
Tags: microsoftBuilding on its broad security portfolio, Microsoft’s new exposure management is now available in the Microsoft Defender portal, with third-party-connectors on the way. First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/microsoft-highlights-security-exposure-management-ignite
-
Microsoft Seizes 240 Websites to Disrupt Global Distribution of Phish Kits
by
in SecurityNewsMicrosoft has seized 240 websites associated with the “ONXX” phishing-as-a-service operation, and has sued the developer of this service First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/microsoft-seizes-websites-phish/
-
Malware Bypasses Microsoft Defender and 2FA to Steal $24K in Crypto
by
in SecurityNewsMalware bypasses Microsoft Defender and 2FA, stealing $24K in cryptocurrency via a fake NFT game app. Learn how… First seen on hackread.com Jump to article: hackread.com/malware-bypasses-microsoft-defender-2fa-crypto/
-
Microsoft Flight Simulator 2024 struggles to take off
by
in SecurityNewsIf only the company in the title knew how to scale servers in the cloud First seen on theregister.com Jump to article: www.theregister.com/2024/11/20/microsoft_flight_simulator_2024_launch/
-
Microsoft Disrupts ONNX Phishing Service, Names Its Operator
by
in SecurityNewsMicrosoft has seized 240 phishing-related websites and has disrupted the ONNX service, which the company says is run by an Egyptian man. The post Microsoft Disrupts ONNX Phishing Service, Names Its Operator appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/microsoft-disrupts-onnx-phishing-service-names-its-operator/
-
Microsoft, Meta, and DOJ Disrupt Global Cybercrime and Fraudulent Networks
by
in SecurityNewsMeta Platforms, Microsoft, and the U.S. Department of Justice (DoJ) have announced independent actions to tackle cybercrime and disrupt services that enable scams, fraud, and phishing attacks.To that end, Microsoft’s Digital Crimes Unit (DCU) said it seized 240 fraudulent websites associated with an Egypt-based cybercrime facilitator named Abanoub Nady (aka MRxC0DER and mrxc0derii), who First…
-
Microsoft Takes Action Against Phishing-as-a-Service Platform
by
in SecurityNewsThe ONNX infrastructure has been servicing criminal actors as far back as 2017. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/microsoft-takes-action-against-phishing-service-platform
-
Microsoft seizes 240 websites used by Egyptian phishing-as-a-service operation ‘ONNX’
by
in SecurityNewsFirst seen on therecord.media Jump to article: therecord.media/microsoft-seizes-websites-onnx-phishing
-
Breach Roundup: Russia Suspected of Severing Undersea Cables
by
in SecurityNewsAlso: VPN Vulnerabilities Attract Hackers, Hackers Use Swiss Mail to Send Malware. This week, Russia suspected in Balctic Sea cable sabotage, VPNs draw ransomware attackers and Swiss snail mail malware. An AI training company reported a cybertheft of $250,000 and a U.S. space firm reported a breach. Microsoft said it will pay $$$ for AI…
-
Windows 11 KB5046740 update released with 14 changes and fixes
by
in SecurityNewsMicrosoft has released the November 2024 preview cumulative update for Windows 11 24H2, with 14 improvements and fixes for multiple issues, including some affecting File Explorer, the Clipboard history, and secondary displays. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/windows-11-kb5046740-update-released-with-14-changes-and-fixes/
-
Five Cyber Agencies Sound Alarm About Active Directory Attacks: Beyond the Basics
by
in SecurityNews
Tags: access, attack, authentication, cloud, compliance, control, credentials, cyber, cybersecurity, data, defense, detection, exploit, framework, iam, identity, infrastructure, intelligence, least-privilege, login, mfa, microsoft, monitoring, password, risk, service, software, strategy, tactics, threat, tool, update, vulnerabilityA landmark global report emphasizes 17 attack techniques against Microsoft Active Directory and cautions organizations to step up protections. In the second of our two-part series, we take you beyond the basics to highlight three key areas to focus on. The landmark report Detecting and Mitigating Active Directory Compromises, released in September by cybersecurity agencies…
-
Microsoft seizes websites tied to Egypt-based DIY phishing kit-maker
by
in SecurityNewsThe kits, which the company said were a sophisticated approach to bypassing multifactor authentication, pose a particular threat to the financial services sector. First seen on cyberscoop.com Jump to article: cyberscoop.com/microsoft-seizes-websites-tied-to-egypt-based-diy-phishing-kit-maker/
-
Microsoft pulls WinAppSDK update breaking Windows 10 app uninstalls
by
in SecurityNewsMicrosoft has confirmed that, since November 12, some Windows 10 users have been unable to update or uninstall packaged applications like Microsoft Teams. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-pulls-winappsdk-update-breaking-windows-10-app-uninstalls/
-
Per Vollbild-Anzeige – Microsoft empfiehlt Windows-10-Nutzern Copilot+ PCs
by
in SecurityNewsMicrosoft will Windows-10-Nutzer zum Wechsel auf Windows 11 bewegen und empfiehlt in Vollbild-Anzeigen den Kauf eines Copilot+ PCs. First seen on computerbase.de Jump to article: www.computerbase.de/news/betriebssysteme/per-vollbild-anzeige-microsoft-empfiehlt-windows-10-nutzern-copilot-plus-pcs.90375
-
Microsoft disrupts ONNX phishing-as-a-service infrastructure
by
in SecurityNewsMicrosoft’s Digital Crimes Unit (DCU) has seized 240 domains used by customers of ONNX, a phishing-as-a-service (PhaaS) platform, to target companies and individuals across the United States and worldwide since at least 2017. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/microsoft-disrupts-onnx-phishing-as-a-service-infrastructure/
-
After CrowdStrike Outage, Microsoft Debuts ‘Quick Machine Recovery’ Tool
by
in SecurityNewsMicrosoft debuts Quick Machine Recovery tool to apply fixes even when machines are unable to boot, without needing physical access. The post After CrowdStrike Outage, Microsoft Debuts ‘Quick Machine Recovery’ Tool appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/after-crowdstrike-outage-microsoft-debuts-quick-machine-recovery-tool/
-
Microsofts Bing-Wallpaper als Adware? Teil I
by
in SecurityNewsIch kippe mal einen Fundsplitter, der mir gerade untergekommen sind, in einen Beitrag ein zweiter Beitrag zu einem ähnlichen Thema folgt. Microsoft bietet im App-Store eine neue Bing-Wallpaper-App an, die wechselnde Bildschirmhintergründe zeigen soll. Mit der App holt man … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/11/21/windows-microsofts-bing-wallpaper-als-adware/
-
Windows 10: Microsoft nervt Nutzer mit Vollbildwerbung für Copilot+-PCs
by
in SecurityNewsEinigen Windows-10-Nutzern hat Microsoft zuletzt wieder Vollbildanzeigen präsentiert. Darin animiert der Konzern zum Kauf neuer PCs mit Windows 11. First seen on golem.de Jump to article: www.golem.de/news/windows-10-microsoft-nervt-nutzer-mit-vollbildwerbung-fuer-copilot-pcs-2411-190989.html
-
Microsofts Bing-Wallpaper als Adware?
by
in SecurityNewsIch kippe mal einen Fundsplitter, der mir gerade untergekommen sind, in einen Beitrag ein zweiter Beitrag zu einem ähnlichen Thema folgt. Microsoft bietet im App-Store eine neue Bing-Wallpaper-App an, die wechselnde Bildschirmhintergründe zeigen soll. Mit der App holt man … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/11/21/windows-microsofts-bing-wallpaper-als-adware/
-
Azure Key Vault Tradecraft with BARK
by
in SecurityNews
Tags: access, api, authentication, credentials, data, encryption, microsoft, password, powershell, RedTeam, serviceBrief This post details the existing and new functions in BARK that support adversarial tradecraft research relevant to the Azure Key Vault service. The latter part of the post shows an example of how a red team operator may use these commands during the course of an assessment. Authentication Azure Key Vault is one of…
-
FY25 Changes in Microsoft Partner Benefits and Important Dates for Legacy Partners
by
in SecurityNews
Tags: microsoftFirst seen on scworld.com Jump to article: www.scworld.com/native/fy25-changes-in-microsoft-partner-benefits-and-important-dates-for-legacy-partners
-
Microsoft Adds Raft of Zero-Trust Tools and Platforms
by
in SecurityNewsMicrosoft this week launched a raft of cybersecurity initiatives that address everything from making Windows platforms more secure to adding platforms that are more secure by design. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/11/microsoft-adds-raft-of-zero-trust-tools-and-platforms/
-
Microsoft Veeps Ignite Fire Under CrowdStrike
by
in SecurityNewsBSODs begone! Redmond business leaders line up to say what’s new in Windows security. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/11/microsoft-ignite-2024-security-crowdstrike-richixbw/
-
Microsoft confirms game audio issues on Windows 11 24H2 PCs
by
in SecurityNewsMicrosoft says a Windows 24H2 bug causes game audio to unexpectedly increase to full volume when using USB DAC sound systems. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-confirms-game-audio-issues-on-windows-11-24h2-pcs/
-
Microsoft Launches Windows Resiliency Initiative to Boost Security and System Integrity
by
in SecurityNewsMicrosoft has announced a new Windows Resiliency Initiative as a way to improve security and reliability, as well as ensure that system integrity is not compromised.The idea, the tech giant said, is to avoid incidents like that of CrowdStrike’s earlier this July, enable more apps and users to be run without admin privileges, add controls…
-
Microsoft Ignite New 360-Degree Details Attackers Tools Methods
by
in SecurityNewsA significant leap forward in cybersecurity was announced with the introduction of new threat intelligence (TI) capabilities in Security Copilot, aimed at giving organizations a comprehensive ‘360-degree’ view of attacker tools and methodologies. These innovations promise to provide defenders with deeper insights into potential threats, making it easier than ever to detect and neutralize adversaries before…
-
Microsoft KI und Cloud: Neues Bug-Bounty-Event mit 4 Millionen US-Dollar Prämie
by
in SecurityNewsEntdecken Sicherheitsforscher beim neuen Zero-Day-Quest-Event Lücken in Microsoft-Produkten, winken hohe Geldprämien. First seen on heise.de Jump to article: www.heise.de/news/Microsoft-KI-und-Cloud-Neues-Bug-Bounty-Event-mit-4-Millionen-US-Dollar-Praemie-10077677.html
-
Microsoft wählt Netskope als führenden Partner für Advanced SSE
by
in SecurityNews
Tags: microsoftMicrosoft hat Netskope als führenden Partner ausgewählt, um die Netskope One SSE-Funktionen direkt in die Microsoft Entra Suite zu integrieren. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/microsoft-waehlt-netskope-als-fuehrenden-partner-fuer-advanced-sse/a38991/