The mystery of how Chinese hackers managed to steal a crucial signing key that allowed them to breach Microsoft 365’s email service and access accounts of employees of 25 government agencies has been explained: they found it somewhere where it shouldn’t have been – Microsoft’s corporate environment. The theft of a Microsoft signing key In […]
A new Windows infostealer is on the loose, stealing highly sensitive information and featuring clever ways to evade detection by security software. Known as the Meduza Stealer, its sole purpose is “comprehensive data theft,” according to cybersecurity researchers at Uptycs who discovered the malware, as it scours “users’ browsing activities, extracting a wide array of […]
Many vulnerabilities that ransomware operators used in 2022 attacks were years old and paved the way for the attackers to establish persistence and move laterally in order to execute their missions. The vulnerabilities, in products from Microsoft, Oracle, VMware, F5, SonicWall, and several other vendors, present a clear and present danger to organizations that haven’t […]
Latest Comments