Microsoft 365 outage takes down Office web apps, admin center

December 10, 2024 at 07:48AM Microsoft is currently investigating a significant and ongoing outage affecting Microsoft 365, specifically impacting Office web apps and the Microsoft 365 admin center. **Meeting Takeaways: Microsoft 365 Outage Investigation** 1. **Current Situation**: Microsoft is currently investigating a widespread outage affecting Microsoft 365 services. 2. **Impact**: The outage primarily impacts Office … Read more

Microsoft: Another Chinese cyberspy crew targeting US critical orgs ‘as of yesterday’

December 5, 2024 at 08:13PM Microsoft’s threat intelligence team reports that the China-linked group Storm-0227 is targeting critical infrastructure and US government agencies, leveraging public security vulnerabilities and spear-phishing tactics. Active since January, they steal credentials and sensitive data, indicating significant and ongoing espionage efforts focused on US defense, telecommunications, and legal sectors. ### Meeting … Read more

New Rockstar 2FA phishing service targets Microsoft 365 accounts

November 29, 2024 at 02:09PM A new phishing-as-a-service platform called ‘Rockstar 2FA’ has been launched, enabling large-scale adversary-in-the-middle (AiTM) attacks to compromise Microsoft 365 credentials. This service makes it easier for criminals to conduct phishing attacks on a broader scale. ### Meeting Takeaways: 1. **Introduction of ‘Rockstar 2FA’**: A new phishing-as-a-service (PhaaS) platform has been … Read more

Microsoft says it’s not using your Word, Excel data for AI training

November 27, 2024 at 01:57PM Microsoft has denied allegations that it collects user data from Microsoft 365 applications, such as Word, Excel, and PowerPoint, for training its artificial intelligence models. **Meeting Takeaways:** – Microsoft has refuted allegations regarding the use of data from Microsoft 365 applications (Word, Excel, PowerPoint) for training its AI models. – … Read more

Microsoft 365 outage impacts Exchange Online, Teams, Sharepoint

November 25, 2024 at 10:59AM Microsoft is addressing a significant outage affecting Microsoft 365 services, including Exchange Online, Teams, and SharePoint. Since the issue began six hours ago, users reported problems with various services. Microsoft is deploying fixes and monitoring progress, having successfully restored approximately 60% of the affected environments. ### Meeting Takeaways 1. **Ongoing … Read more

Microsoft Takes Action Against Phishing-as-a-Service Platform

November 21, 2024 at 05:43PM Microsoft seized 240 domains linked to ONNX, a phishing-as-a-service platform targeting companies and individuals since 2017. ONNX was the leading player in middle (AitM) phishing, promoting phishing kits on Telegram. Microsoft’s legal action aims to disrupt ONNX’s operations, though other threat providers may emerge. ### Meeting Takeaways 1. **Domain Seizure**: … Read more

Microsoft disrupts ONNX phishing-as-a-service infrastructure

November 21, 2024 at 12:08PM Microsoft and the Justice Department seized over 240 domains linked to ONNX, a phishing-as-a-service platform targeting thousands of victims globally since 2017. ONNX was the leading provider of phishing kits in 2024, enabling sophisticated attacks that bypassed security measures. Operations ceased after the owner’s identity was revealed. ### Meeting Takeaways … Read more

Microsoft 365 Admin portal abused to send sextortion emails

November 18, 2024 at 08:14AM Scammers are exploiting the Microsoft 365 Admin Portal to send sextortion emails that bypass spam filters by using the legitimate “[email protected]” address. These emails claim to have compromising content and demand payment. Microsoft is investigating this abuse, but users should remain vigilant and not respond to these scams. ### Meeting … Read more

Microsoft Outlook workaround fixes freezes when copying text

November 2, 2024 at 07:40PM Microsoft is investigating a known issue impacting Microsoft 365 customers, where classic Outlook hangs or freezes during text copying. **Meeting Takeaways:** 1. **Issue Identification**: Microsoft is currently investigating a known issue impacting Microsoft 365 customers. 2. **Problem Description**: The issue specifically causes the classic Outlook application to hang or freeze … Read more

Microsoft Warns of Chinese Botnet Exploiting Router Flaws for Credential Theft

November 1, 2024 at 06:27AM Microsoft has identified a Chinese threat actor, Storm-0940, using a botnet named Quad7 (CovertNetwork-1658) to conduct sophisticated password spray attacks targeting organizations in North America and Europe. This botnet exploits security flaws in routers to gain access, facilitating credential theft and further cyber exploitation. ### Meeting Takeaways – November 01, … Read more