Microsoft’s Threat Intelligence Centre (MSTIC) has shared an article outlining how the actions they have undertaken to disrupt the Russian threat actor, SEABORGIUM, phishing and credential theft campaigns. Disrupting SEABORGIUM’s ongoing phishing operations – Microsoft Security Blog
Commercialised cyberweapons
For when you have time, here are two articles from Microsoft looking at cyberweapons: Continuing the fight against private sector cyberweapons – Microsoft On the Issues Untangling KNOTWEED: European private-sector offensive actor using 0-day exploits – Microsoft Security Blog The view from the US Government Pegasus spyware: Just ‘tip of …
Hacking everywhere – even if you use MacOS
I talk about the vulnerabilities in Microsoft products a lot – whatever anyone thinks, in business, we live in a Microsoft world. However I have posts about Linux, MacOS and smartphone OS’s – here is one that can impact Mac users. Uncovering a macOS App Sandbox escape vulnerability: A deep …
Continue reading “Hacking everywhere – even if you use MacOS”
H0lyGh0st ransomware targets small and medium businesses
This is a longer read from the Microsoft Security Blog and the Microsoft Threat Intelligence Center (MSTIC) and it illustrates that all businesses and organisations regardless of size or ability to pay are in the threat actor’s sights: North Korean threat actor targets small and midsize businesses with H0lyGh0st ransomware …
Continue reading “H0lyGh0st ransomware targets small and medium businesses”
I have told everyone to use MFA so I do not need to think about more cyber security! UPDATED 14 July 2022
This post was original published on 27 June 2022 Update 14 July 2022 Here is an article from the Microsoft Threat Intelligence Center (MSTIC) and the Microsoft 365 Defender Research Team outlining how the big phishing campaigns backed by experienced and skilled hackers can bypass the security of multi-factor authentication: …