Microsoft Archives

Microsoft: RaaS attacks continue to evolve and expand

Cybersecurity Attacks, Malware, Ransomware / Frank Crast / February 2, 2023 / Batloader, BlackCat, LockBit, Microsoft, RaaS, Ransomware

Microsoft has been tracking over 100 threat actors using 50 unique active ransomware families in attacks around the globe.

Microsoft: RaaS attacks continue to evolve and expand Read More »

Microsoft January 2023 Security Updates addresses 98 vulnerabilities (11 rated Critical, 1 zero day)

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / January 11, 2023 / CVE-2023-21535, CVE-2023-21543, CVE-2023-21546, CVE-2023-21548, CVE-2023-21551, CVE-2023-21555, CVE-2023-21556, CVE-2023-21561, CVE-2023-21679, CVE-2023-21730, CVE-2023-21743, Microsoft, Windows

The Microsoft January 2023 Security Updates includes patches and advisories for 98 vulnerabilities, including 11 Critical severity issues.

Microsoft January 2023 Security Updates addresses 98 vulnerabilities (11 rated Critical, 1 zero day) Read More »

Microsoft report highlights Mac ransomware threats and techniques

Cybersecurity Articles, Cybersecurity Attacks, Malware / Frank Crast / January 7, 2023 / Defender, encryption, EvilQuest, FileCoder, KeRanger, macOS, MacRansom, malware, Microsoft, OSX, Ransomware

Microsoft has released new details on Mac ransomware threats, techniques and provided guidance on how to protect networks and systems from ransomware attacks.

Microsoft report highlights Mac ransomware threats and techniques Read More »

MCCrash botnet launches DDoS attacks against Minecraft servers

Cybersecurity Attacks, Malware / Frank Crast / December 21, 2022 / botnet, Cyberattack, DDoS, DEV-1028, IOT, MCCrash, Microsoft, Minecraft

Microsoft researchers have detected a cross-platform botnet designed to infect Windows, Linux, and IoT devices. The botnet dubbed “MCCrash” then launches distributed denial of service (DDoS) attacks against private Minecraft servers.

MCCrash botnet launches DDoS attacks against Minecraft servers Read More »

‘Achilles’ vulnerability exploit bypasses macOS Gatekeeper

Proof of Concepts (POCs), Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / December 20, 2022 / Apple, CVE-2022-42821, Gatekeeper, macOS, Microsoft, POC

Microsoft researchers discovered a vulnerability dubbed “Achilles” in macOS that could allow attackers to bypass Apple’s Gatekeeper security feature designed to ensure that only trusted software runs on your Mac.

‘Achilles’ vulnerability exploit bypasses macOS Gatekeeper Read More »

CISA adds 6 vulnerabilities to Known Exploited Vulnerabilities Catalog (to include iOS, Microsoft, Fortinet, Citrix and Veeam vulnerabilities)

Cybersecurity Attacks, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / December 18, 2022 / Citrix, CVE-2022-26500, CVE-2022-26501, CVE-2022-27518, CVE-2022-42475, CVE-2022-42856, CVE-2022-44698, Defender, Fortinet, iOS, Microsoft, SmartScreen, VPN

The Cybersecurity and Infrastructure Security Agency (CISA) has added six vulnerabilities to its Known Exploited Vulnerabilities Catalog, to include iOS, Microsoft, Fortinet, Citrix and Veeam vulnerabilities.

CISA adds 6 vulnerabilities to Known Exploited Vulnerabilities Catalog (to include iOS, Microsoft, Fortinet, Citrix and Veeam vulnerabilities) Read More »

Rackspace suffers from security incident involving Hosted Exchange services

Cybersecurity Attacks, Data Breach, Messaging Security, Vulnerabilities & Exploits / Frank Crast / December 4, 2022 / Exchange, Microsoft, Office365, ProxyNotShell, Rackspace, Zeroday

Cloud computing services company Rackspace has reported a security incident involving Hosted Exchange services.

Rackspace suffers from security incident involving Hosted Exchange services Read More »

Microsoft: Attackers are increasingly using token theft in cyberattacks to bypass MFA

Authentication, Cloud Security, Cybersecurity Articles, Cybersecurity Attacks, Identity & Access Management / Frank Crast / November 22, 2022 / AitM, Azure, credentials, Microsoft, pass-the-cookie, phishing

The Microsoft Detection and Response Team (DART) has spotted an increase in attackers using token theft in the cloud to compromise corporate systems while bypassing multi-factor authentication (MFA) and other authentication controls.

Microsoft: Attackers are increasingly using token theft in cyberattacks to bypass MFA Read More »

Microsoft disables Basic authentication in Exchange Online to fight password spray attacks

Authentication, Cybersecurity Attacks, Messaging Security / Frank Crast / October 7, 2022 / authentication, basic auth, EAS, EWS, Exchange, Exchange Online, IMAP, Microsoft, Oauth, OAuth 2.0, Outlook, POP, RPS, SMTP

Microsoft has disabled Basic authentication in Exchange Online tenants to help fight against password spray attacks. Attackers are stepping up attacks in anticipation, Microsoft warns.

Microsoft disables Basic authentication in Exchange Online to fight password spray attacks Read More »

CISA adds 3 vulnerabilities to Known Exploited Vulnerabilities Catalog

Cybersecurity Attacks, Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / October 1, 2022 / Atlassian, CVE-2022-36804, CVE-2022-41040, CVE-2022-41082, Exchange, Microsoft

The Cybersecurity and Infrastructure Security Agency (CISA) has added 3 vulnerabilities to its Known Exploited Vulnerabilities Catalog, to include Microsoft Exchange and Atlassian flaws.

CISA adds 3 vulnerabilities to Known Exploited Vulnerabilities Catalog Read More »