Hackers Increasingly Abusing Microsoft Graph API for Stealthy Malware Communications

May 3, 2024 at 09:57AM Threat actors are increasingly using Microsoft Graph API for malicious purposes to evade detection, enabling communication with command-and-control (C&C) infrastructure on Microsoft cloud services. Symantec uncovered instances of nation-state-aligned hacking groups using this method, including the deployment of previously undocumented malware called BirdyClient. The popularity of Graph API among attackers … Read more

Hamas-Linked Cyberattacks Using Rust-Powered SysJoker Backdoor Against Israel

November 24, 2023 at 05:36AM Researchers have discovered a Rust version of the cross-platform backdoor SysJoker, indicating its use by a Hamas-affiliated group to target Israel. The malware has undergone significant changes, using Rust language instead of its previous version. The threat actor has also switched from Google Drive to OneDrive for storing command-and-control server … Read more

Cloudflare website downed by DDoS attack claimed by Anonymous Sudan

November 10, 2023 at 10:32AM Cloudflare’s website experienced a distributed denial-of-service (DDoS) attack by Anonymous Sudan. The attack only affected the www.cloudflare.com website and did not impact other services. Cloudflare confirmed that the outage was caused by a DDoS attack but did not attribute it to a specific threat actor. Anonymous Sudan has also claimed … Read more

Microsoft: Some Outlook.com users can’t send emails with attachments

November 7, 2023 at 12:08PM Microsoft has issued a warning to Outlook.com users about possible difficulties when sending emails with attachments. Error code 550 5.7.520 may appear, preventing emails from being sent. Microsoft suggests users upload files to OneDrive and share the link instead. Step-by-step instructions are provided as a workaround until the issue is … Read more