'

CISA Warns of Phishing Attempts During CrowdStrike, Microsoft Outage Chaos

CISA Warns of Phishing Attempts During CrowdStrike, Microsoft Outage Chaos

U.S. government agencies and cybersecurity experts are warning of opportunistic phishing attacks, SMS scams and other malicious activity, which are attempting to take advantage of the chaos of Friday’s global outages. The outages themselves are not a cyberattack, but instead have been linked to an update for versions of CrowdStrike’s Falcon EDR product running on … Read more

Categories duo

CrowdStrike Windows Update Linked to Global Outages

CrowdStrike Windows Update Linked to Global Outages

An issue with an update for versions of CrowdStrike’s Falcon EDR product running on Windows machines late Thursday night caused those machines to fail and go into a boot loop state, causing widespread issues and a cascading series of outages for companies and services across the Internet. Many banks, airlines, media companies, and other large … Read more

Categories duo

Global Microsoft Meltdown Tied to Bad Crowstrike Update

Global Microsoft Meltdown Tied to Bad Crowstrike Update

A faulty software update from cybersecurity vendor Crowdstrike crippled countless Microsoft Windows computers across the globe today, disrupting everything from airline travel and financial institutions to hospitals and businesses online. Crowdstrike said a fix has been deployed, but experts say the recovery from this outage could take some time, as Crowdstrike’s solution needs to be … Read more

CrowdStrike Windows Update Linked to Azure Outage

CrowdStrike Windows Update Linked to Global Outages

An issue with an update for versions of CrowdStrike’s Falcon EDR product running on Windows machines late Thursday night caused those machines to fail and go into a boot loop state, causing widespread issues and a cascading series of outages for companies and services across the Internet. Many banks, airlines, media companies, and other large … Read more

Categories duo

CrowdStrike Update Triggers Widespread Windows Crashes

A recent update from cybersecurity firm CrowdStrike has caused significant disruptions for Windows users, leading to widespread reports of Blue Screen of Death (BSOD) errors. The issue, affecting multiple versions of the company’s sensor software, has prompted urgent investigations and a swift response from CrowdStrike’s engineering team. A report from the Reddit platform states that … Read more

Operation Spincaster Disrupts Approval Phishing Technique that Drains Victim’s Wallets

Chainalysis has launched Operation Spincaster, an initiative to disrupt approval phishing scams that have drained billions from victims’ wallets. This operation, which brings together public and private sectors, has yielded promising results and offers a blueprint for future anti-fraud efforts. The Rise of Approval Phishing Approval phishing has emerged as a highly effective tactic for … Read more

Connect with Microsoft Security at Black Hat USA 2024​​

Connect with Microsoft Security at Black Hat USA 2024​​

Black Hat USA 2024 is packed with timely, relevant information for today’s security professionals. During the conference this August, we’ll share our deep expertise in AI-first end-to-end security and extensive threat intelligence research. Join us as we present our main stage speaker Ann Johnson, Corporate Vice President and Deputy Chief Information Security Officer (CISO) of … Read more

Microsoft Purview Data Governance will be generally available September 1, 2024

Microsoft Purview Data Governance will be generally available September 1, 2024

We are excited to announce that the new Microsoft Purview Data Governance solution will be generally available beginning September 1, 2024. This experience is designed to help today’s data leaders solve their key governance and security challenges in an AI-powered, business-friendly, and unified solution. Since the service launch in early April 2024, usage has skyrocketed … Read more

Octo Tempest Know for Attacking VMWare ESXi Servers Added RansomHub & Qilin to Its Arsenal

Threat actors often attack VMware ESXi servers since they accommodate many virtual machines, which link to a variety of systems via one breach.  Compromising an ESXi server can bring the targeted services down. Additionally, valuable resources and data are stored in the ESXi servers, which makes them lucrative targets for hackers. Cybersecurity researchers at Microsoft … Read more

TAG-100 Actors Using Open-Source Tools To Attack Gov & Private Orgs

<div>TAG-100 Actors Using Open-Source Tools To Attack Gov & Private Orgs</div>

Hackers exploit open-source tools to execute attacks because they are readily available, well-documented, and often have extensive community support, making them easy to modify and deploy.  Besides this, open-source tools can be customized to evade detection, automate tasks, and leverage existing vulnerabilities, enabling threat actors to conduct sophisticated attacks efficiently. Recorded Future’s Insikt Group uncovered … Read more

Digging Into FIN7’s Latest Tools and Tactics

<div>Digging Into FIN7's Latest Tools and Tactics</div>

The FIN7 cybercrime group has been active since at least 2013 and has used a wide range of tactics and tools in that time, including the Carbanak backdoor, the Black Basta ransomware, and perhaps most notably, the AvNeutralizer tool. AvNeutralizer, as its name might suggest, is designed specifically to tamper with EDR and other security … Read more

Categories duo