Microsoft Warns of Widespread Phishing Attacks Using Open Redirects
By: Ravie Lakshmanan
Microsoft is warning of a widespread credential phishing campaign that leverages open redirector links in email communications as a vector to trick users into visiting malicious websites...
Critical Cosmos Database Flaw Affected Thousands of Microsoft Azure Customers
By: Ravie Lakshmanan
Cloud infrastructure security company Wiz on Thursday revealed details of a now-fixed Azure Cosmos database vulnerability that could have been potentially exploited to grant any Azure user...
New SideWalk Backdoor Targets U.S.-based Computer Retail Business
By: Ravie Lakshmanan
A computer retail company based in the U.S. was the target of a previously undiscovered implant called SideWalk as part of a recent campaign undertaken by a...
Researchers Detail Modus Operandi of ShinyHunters Cyber Crime Group
By: Ravie Lakshmanan
ShinyHunters, a notorious cybercriminal underground group that's been on a data breach spree since last year, has been observed searching companies' GitHub repository source code for vulnerabilities...
ShadowPad Malware is Becoming a Favorite Choice of Chinese Espionage Groups
By: Ravie Lakshmanan
ShadowPad, an infamous Windows backdoor that allows attackers to download further malicious modules or steal data, has been put to use by five different Chinese threat clusters...
Cloudflare mitigated one of the largest DDoS attack involving 17.2 million rps
By: Ravie Lakshmanan
Web infrastructure and website security company Cloudflare on Thursday disclosed that it mitigated the largest ever volumetric distributed denial of service (DDoS) attack recorded to date.
The attack,...
Attackers Can Weaponize Firewalls and Middleboxes for Amplified DDoS Attacks
By: Ravie Lakshmanan
Weaknesses in the implementation of TCP protocol in middleboxes and censorship infrastructure could be weaponized as a vector to stage reflected denial of service (DoS) amplification attacks,...
Hackers Spotted Using Morse Code in Phishing Attacks to Evade Detection
By: Ravie Lakshmanan
Microsoft has disclosed details of an evasive year-long social engineering campaign wherein the operators kept changing their obfuscation and encryption mechanisms every 37 days on average, including...
IT Giant Accenture Hit by LockBit Ransomware; Hackers Threaten to Leak Data
By: Ravie Lakshmanan
Global IT consultancy giant Accenture has become the latest company to be hit by the LockBit ransomware gang, according to a post made by the operators on...
Hackers Steal Over $600 Million Worth of Cryptocurrencies from Poly Network
By: Ravie Lakshmanan
Hackers have siphoned $611 million worth of cryptocurrencies from a blockchain-based financial network in what's believed to be one of the largest heists targeting the digital asset...