AutoWarp was discovered and reported by Orca Security to Microsoft, who patched it, before its widespread exploitation. Microsoft Azure flaw allowed unauthorized account access • The Register AutoWarp would have given unauthorised access to Azure Automation Services.
When wiping a system does not actually wipe the system – this is how data creeps out of organisations
So you are going to upgrade your computers – and what do you do with the old ones? What are your options? Pass the machine onto a junior in the organisation Donate the machine to good cause Sell or give it away to a member of staff or to someone …
Microsoft statement on cyber security – Russia Ukraine Conflict
Brad Smith – President & Vice Chair at Microsoft has made a statement on the war in Ukraine. It is wide ranging but it does highlight steps Microsoft is taking to defend against against cyber attacks. Digital technology and the war in Ukraine – Microsoft On the Issues Big Tech …
Continue reading “Microsoft statement on cyber security – Russia Ukraine Conflict”
An oldie but still out in the wild
The Equation Editor vulnerability in Microsoft Office was fixed back in 2017 but SANS recently found a new phishing email using it in the wild. It really highlights why updates and patches are so important – especially when you are using older software. Have a look at the ingenuity used …
Now we have “ice phishing” on the shiny new web3
What is ice phishing? Here is what Microsoft has to say about it: ” ‘ice phishing’… …doesn’t involve stealing one’s private keys. Rather, it entails tricking a user into signing a transaction that delegates approval of the user’s tokens to the attacker. This is a common type of transaction that enables …
Continue reading “Now we have “ice phishing” on the shiny new web3″