attack Archives | CW Enterprises

MFA Bypass Bugs Opened Microsoft 365 to Attack

15th September 2020Elizabeth Montalbano

Vulnerabilities ‘that have existed for years’ in WS-Trust could be exploited to attack other services such as Azure and Visual Studio. Source: [...]

Magecart Attack Impacts More Than 10K Online Shoppers

14th September 2020Tara Seals

Close to 2,000 e-commerce sites were infected over the weekend with a payment-card skimmer, maybe the result of a zero-day exploit. Source: [...]

Office 365 Phishing Attack Leverages Real-Time Active Directory Validation

11th September 2020Lindsey O Donnell

Attackers check the victims’ Office 365 credentials in real time as they are typed into the phishing landing page, by using authentication APIs. [...]

A Florida Teen Shut Down Remote School With a DDoS Attack

5th September 2020Brian Barrett

Plus: Predictive policing taken even farther, Amazon surveillance of private Facebook groups, and more of the week’s top security news. Source: Wired [...]

BEC Wire Transfers Average $80K Per Attack

2nd September 2020Tara Seals

That number represents a big uptick over Q1. Source: Threat Post – Web Security – BEC Wire Transfers Average K Per Attack [...]

Lazarus APT Hackers Attack Japanese Organization Using Remote SMB Tool “SMBMAP” After Network Intrusion

1st September 2020BALAJI N

Researchers from JPCERT/CC observed that the world’s most dangerous APT hackers attack Japanese organization with different malware for during and after the intrusion [...]

Hackers Exploit Autodesk Flaw in Recent Cyberespionage Attack

26th August 2020Lindsey O Donnell

The popular Autodesk software was exploited in a recent cyberespionage campaign against an international architectural company. Source: Threat Post – Web Security [...]

Phishing Attack Used Box to Land in Victim Inboxes

25th August 2020Kelly Sheridan Staff Editor

A phishing attack targeting government and security organizations used a legitimate Box page with Microsoft 365 branding to trick victims. Source: Dark [...]

The Attack That Broke Twitter Is Hitting Dozens of Companies

18th August 2020Andy Greenberg

“Phone spear phishing” attacks have been on the rise since a bitcoin scam took over the social media platform in July. Source: [...]

ReVoLTE Attack Allows Hackers to Listen in on Mobile Calls

13th August 2020Elizabeth Montalbano

Rare attack on cellular protocol exploits an encryption-implementation flaw at base stations to record voice calls. Source: Threat Post – Mobile Security [...]