APT‑C‑23 Hacker Group Attacks Android Users That Records Calls & Take Pictures Silently
Security researchers discovered new spyware used by the APT-C-23 threat group to target Android users through fake Android app store. The APT-C-23, a
[...]
attacks
OAuth Consent Phishing Ramps Up with Microsoft Office 365 Attacks
Attackers gain read-only permissions to snoop around Office 365 accounts, including emails, contacts and more.
Source: Threat Post – Web Security –
[...]
Microsoft: Ransomware & Nation-State Attacks Rise, Get More Sophisticated
Malware-based attacks are out, phishing is in, along with credential stuffing and business email compromise. Microsoft recommends defensive tactics in its new report
[...]
Zerologon Attacks Against Microsoft DCs Snowball in a Week
The attempted compromises, which could allow full control over Active Directory identity services, are flying thick and fast just a week after active
[...]
FortiGate VPN Default Config Allows MitM Attacks
The client’s default configuration for SSL-VPN has a certificate issue, researchers said.
Source: Threat Post – Web Security – FortiGate VPN Default
[...]
Microsoft Kills 18 Azure Accounts Tied to Nation-State Attacks
An APT group has started heavily relying on cloud services like Azure Active Directory and OneDrive, as well as open-source tools, to obfuscate
[...]
Google Chrome Security Update Wide Range of Attacks – Update Now!
Google released Chrome 85.0.4183.121 for Windows, Mac, and Linux which comes with a fix for 10 security flaws. Successful exploitation of the vulnerability
[...]
DDoS Attacks Rose 151% in First Half of 2020
Attacks grew in number, size, and sophistication as the coronavirus pandemic took hold.
Source: Dark Reading – Threat Intelligence – DDoS Attacks
[...]
US Charges Five Members of China-Linked APT41 for Global Attacks
The five Chinese nationals are among seven defendants arrested for intrusion campaigns into more than 100 organizations, the DoJ reports.
Source: Dark
[...]
DDoS Attacks Skyrocket as Pandemic Bites
More people being online during lockdowns and work-from-home shifts has proven to be lucrative for DDoS-ers.
Source: Threat Post – Web Security
[...]