January 9, 2024 at 01:42PM Cybercriminals are targeting Microsoft’s database, with the specific threat group behind these attacks remaining unidentified. These security breaches were discovered due to an unintentional operational security lapse. It appears that Microsoft’s database is facing continued cybercriminal attention, with the threat group behind the attacks currently unknown. These attacks were only … Read more
December 22, 2023 at 11:52AM Microsoft observed Iranian nation-state cyberattackers Peach Sandstorm delivering FalseFont backdoor to individuals within the military-industrial sector, aiming for global infrastructure supporting military research. FalseFont allows remote access, file execution, and data transmission to control servers. It was first observed in early November, and the group’s ongoing improvements suggest continued interest … Read more
December 22, 2023 at 01:18AM Microsoft has observed an Iranian threat actor targeting organizations in the Defense Industrial Base sector with a newly discovered backdoor named FalseFont. This backdoor allows remote access, file launching, and data transmission to its command-and-control servers. The campaign aligns with previous activity by the threat actor, indicating an ongoing evolution … Read more
December 19, 2023 at 03:05PM “Microsoft urges immediate patching for four Perforce Helix Core Server vulnerabilities, including a critical RCE bug. Perforce Server used in gaming, government, military, and tech sectors. All vulnerabilities fixable by updating to version 2023.1/2513900. Microsoft has not seen exploitation but warns of potential complete system takeover. Additional security measures and … Read more
December 19, 2023 at 01:44PM Microsoft has confirmed Wi-Fi connectivity issues on some Windows 11 devices after recent updates. They advise affected users to uninstall the KB5033375 and KB50532288 updates as a temporary solution and provide steps to do so. The issue is primarily impacting enterprise wireless networks, and affected users are encouraged to provide … Read more
December 19, 2023 at 01:20PM Microsoft identified four critical vulnerabilities in the Perforce source-code management platform, allowing attackers to access a highly privileged Windows OS account, enabling remote code execution and supply chain attacks. The flaws can lead to various malicious activities, including denial-of-service attacks. Perforce has issued a patch (version 2023.1/2513900) to address these … Read more
December 19, 2023 at 04:33AM Qakbot malware has resurged with a new phishing campaign targeting the hospitality sector. The gang uses malicious PDF attachments disguised as IRS documents to distribute the malware. Despite earlier efforts to take it down, Qakbot has reappeared, demonstrating the challenge of combating cybercrime. Similar to Emotet’s revival, Qakbot’s resurgence poses … Read more
December 18, 2023 at 05:14PM Microsoft’s Digital Crimes Unit disrupted the Storm-1152 cybercrime-as-a-service provider that fraudulently created and sold over 750 million Microsoft accounts, generating millions in illicit profits. The group utilized fake profiles, automated criminal activities, and bypassed security measures like CAPTCHAs. Microsoft identified the main operators and shut down Storm-1152’s US-based infrastructure. The … Read more
December 18, 2023 at 03:52PM Four vulnerabilities, including a critical one, were found in the Perforce Helix Core Server, a widely used source code management platform. Discovered by Microsoft analysts, flaws included denial of service issues and remote code execution by unauthenticated attackers. Users are urged to upgrade to version 2023.1/2513900 to mitigate risk and … Read more
December 18, 2023 at 01:30PM Microsoft released a troubleshooter tool to address an issue where the HP Smart app was automatically installed on Windows when printers were renamed to HP LaserJet M101-M106. The tool can be downloaded from the Microsoft Download Center and requires admin privileges to run. It can remove incorrect metadata and application … Read more