Office 365 Archives

Microsoft releases patch for Autodesk FBX library RCE vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / April 23, 2020 / Autodesk, CVE-2020-7080, CVE-2020-7081, CVE-2020-7082, CVE-2020-7083, CVE-2020-7084, CVE-2020-7085, FBX Library, Microsoft, Office 2019, Office 365

Microsoft has released a new patch for multiple remote code execution (RCE) vulnerabilities in software that uses the Autodesk FBX library.

Threat actors abuse Google Docs Forms to phish Office 365 credentials

Phishing / By Frank Crast / February 24, 2020 / CIM Finance, Google Docs, O365, Office 365

Threat actors are abusing Google Docs Forms as part of cyber campaign to steal Office 365 credentials.

Phosphorus threat group targets email accounts

Cybersecurity Attacks, Messaging Security / By Frank Crast / October 8, 2019 / email, Microsoft, MSTIC, Office 365, Phosphorus

Microsoft has warned a cyber threat group dubbed Phosphorus has recently targeted email accounts belonging to Microsoft customers.

Office 365 third-party risks and configuration guidance

Cloud Security, Configuration Management, Cybersecurity Articles, Third-Party Security, Vulnerabilities & Exploits / By Frank Crast / May 21, 2019 / CISA, Cloud, O365, Office 365, third party

A new security report highlights some of the risks organizations face when moving to the cloud and potential configuration vulnerabilities.

Microsoft provides new details on WinRar bug exploits

Cybersecurity Attacks, Vulnerabilities & Exploits / By Frank Crast / April 11, 2019 / ATP, CVE-2018-20250, Microsoft, MuddyWater, Office 365, WinRAR

Microsoft security researchers revealed additional details on how cyber attackers were able to exploit the 19 year old WinRar vulnerability last March.

Phishing attack via fake Office 365 non-delivery message

Leave a Comment / Cybersecurity Attacks, Messaging Security, Phishing / By Frank Crast / December 17, 2018 / Microsoft, Office 365, phishing

Attackers are using fake Office 365 non-delivery messages in new phishing attacks designed to steal your credentials.

Office 365 phishing attacks

Leave a Comment / Cybersecurity Attacks, Insider Threats, Messaging Security, Phishing / By Frank Crast / August 31, 2017 / DMARC, O365, Office 365, phishing

Office 365 phishing and account compromise attempts are on the rise. Hackers are using legitimate-looking O365 emails that instruct users to login to their account via a spoofed page after their account was supposedly suspended.