Microsoft has foiled a cyber attack aimed at businesses’ cloud environments
The cybercriminals were abusing a verification mechanism in the Microsoft Cloud Partner Program (MCPP). In December 2022, the tech giant quickly stopped the hackers' efforts to steal data by exploiting third-party OAuth apps.
Security firm Proofpoint uncovered the "malicious campaign" where the ... Read more
CISA is renewing its warning about attacks leveraging RMM tools
The US Cybersecurity and Infrastructure Security Agency (CISA) is sounding the alarm about a significant threat that's been brewing for a while now - the malicious use of remote management tools.
Last fall, a massive cyberattack campaign used legitimate remote management software, which was quit... Read more
Data breach affects thousands of Norton LifeLock customers
The accounts of thousands of Norton LifeLock customers were compromised by cybercriminals. The attackers may have been able to access users' password managers.
A statement to the attorney general of the US state of Vermont reveals that Norton was hit by a "credential stuffing" attack several wee... Read more
Royal Mail hit by LockBit ransomware attack
The cyberattack impacted the UK postal system's ability to send mail internationally.
The UK government has announced that the Royal Mail has suffered a ransomware attack by criminal group LockBit, according to a report by the BBC. The attack has disabled the Royal Mail's computer systems used t... Read more
LogRhythm expands its platform’s capabilities to help security teams
New platform features and integrations enable analysts to quickly detect and remediate threats.
LogRhythm announced a series of expanded capabilities and integrations for its security operations solutions this week. The company, which specializes in security intelligence, says the updates "prope... Read more
The Guardian struggles with IT incident ‘believed to be ransomware’
The UK-based newspaper is fighting an IT incident. "We believe this to be a ransomware attack but are continuing to consider all possibilities", editor-in-chief Katharine Viner said.
The Guardian regularly covers cyberincidents. This time, the newspaper reports on itself. An editor revealed th... Read more
‘Russia ratchets up hacking campaign against Ukraine and allies’
Microsoft says the Russian government is coordinating cyberattacks on Ukrainian critical infrastructure along with missiles and other physical strikes.
A Microsoft report issued on December 3 warns that Moscow has intensified its approach to pressure Kiev’s military and political support -- bo... Read more
European Parliament hacked after vote to designate Russia as a sponsor of terrorism
Shortly after they voted to designate Russia as a state-sponsor of terrorism, the European Parliament's website went down.
The European Parliament website was taken offline for several hours on Wednesday by a distributed denial-of-service (DDoS) attack. The attack came shortly after the MEPs vot... Read more
Thales confirms that hackers have published their stolen data
Thales Group has announced that Russian-speaking ransomware group LockBit 3.0 has published its data on the dark web. The French defence and electronics giant was hacked in late October.
An archive of 9.5 gigabytes of "data related to Thales" was published overnight on the website of cybercrime ... Read more
LinkedIn launches security features to remove fake profiles
LinkedIn has introduced new security features to curb the threat of malicious actors on its platform.
LinkedIn is the largest social media platform for businesses. There's been a rise in fake profiles and threat actors as of late. Due to its nature, malicious actors can get through the platform ... Read more