2020, Hacking, Passwords and Security Intelligence

2020

Hacking

Passwords

Security Intelligence

Hackers are using Zerologon exploits in attacks in the wild

Security Affairs

SEPTEMBER 24, 2020

Microsoft is actively tracking threat actor activity using exploits for the CVE-2020-1472 Netlogon EoP vulnerability, dubbed Zerologon. — Microsoft Security Intelligence (@MsftSecIntel) September 24, 2020. We strongly recommend customers to immediately apply security updates for CVE-2020-1472.

Security Intelligence

Security Intelligence Authentication Advertising Passwords

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Security Affairs

OCTOBER 10, 2020

TA505 hacking group has been active since 2014 focusing on Retail and banking sectors. We’re seeing more activity leveraging the CVE-2020-1472 exploit (ZeroLogon). — Microsoft Security Intelligence (@MsftSecIntel) October 6, 2020. — Microsoft Security Intelligence (@MsftSecIntel) October 6, 2020.

Cybercrime

Cybercrime Security Intelligence Authentication Banking

Join 29,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

STRRAT RAT spreads masquerading as ransomware

Security Affairs

MAY 20, 2021

Microsoft Security Intelligence researchers uncovered a malware campaign that is spreading a remote access trojan (RAT) tracked as STRRAT. pic.twitter.com/mGow2sJupN — Microsoft Security Intelligence (@MsftSecIntel) May 19, 2021. STRRAT RAT was first spotted in June 2020 by G DATA who documented its features.

Ransomware

Ransomware Malware Encryption Security Intelligence

Office 365 phishing campaign uses redirector URLs and detects sandboxes to evade detection

Security Affairs

NOVEMBER 18, 2020

“The campaign uses timely lures relevant to remote work, like password updates, conferencing info, helpdesk tickets, etc.” pic.twitter.com/YpUVEfmlUH — Microsoft Security Intelligence (@MsftSecIntel) November 16, 2020. — Microsoft Security Intelligence (@MsftSecIntel) November 16, 2020.

Phishing

Phishing Social Engineering Passwords Security Intelligence

Microsoft, Italy and the Netherlands agencies warn of EMOTET campaigns

Security Affairs

SEPTEMBER 24, 2020

The recent Emotet campaign uses spam messages with password-protected attachments, experts noticed a decline in infections over the weekend, a behavior already observed in the past. Emotet joined the password-protected attachment bandwagon with a campaign starting Friday. SecurityAffairs – hacking, Emotet). Pierluigi Paganini.

Malware

Malware Passwords Advertising Cybercrime

CISA alert warns of Emotet attacks on US govt entities

Security Affairs

OCTOBER 6, 2020

The alert published by CISA was based on data provided by the Multi-State Information Sharing & Analysis Center (MS-ISAC) and the CISA itself since July 2020. Emotet joined the password-protected attachment bandwagon with a campaign starting Friday. SecurityAffairs – hacking, CISA). Pierluigi Paganini.

Government

Government Banking Advertising Malware

Crooks continues to use COVID-19 lures, Microsoft warns

Security Affairs

MAY 13, 2020

COVID-19 themed phishing campaigns recently observed by Microsoft was using messages with subject lines like “BUSINESS CONTINUITY PLAN ANNOUNCEMENT STARTING MAY 2020.” The choice of password-protected ARJ files aims at bypassing some security solutions. . SecurityAffairs – COVID-19, hacking).

Phishing

Phishing Advertising Banking Security Intelligence

More Than 90 Percent of Malware in Q2 Came Via Encrypted Traffic: WatchGuard

eSecurity Planet

OCTOBER 4, 2021

percent of all malware detected on networks of WatchGuard Technologies customers in the second quarter came over encrypted connections, raising the security risk for the 80 percent of such organizations that lack processes for decrypting and scanning HTTPS traffic for threats. A surprising 91.5

Encryption

Encryption Malware Ransomware Firewall

Why access management needs to evolve beyond passwords

CyberSecurity Insiders

OCTOBER 13, 2021

Problems arise for businesses when they base their access management programs entirely around passwords, however. Such programs overlook the burden that passwords can cause to users as well as to IT and security teams. Passwords: An unsustainable business cost. Users have too many passwords to remember on their own.

Passwords

Passwords Accountability Data breaches Authentication

7 Insights About Managing Cyber Risk You Can’t Afford To Miss

Jane Frankland

AUGUST 18, 2020

Whilst this is concerning, when talking to executives outside of security, like I did on a recent masterclass with Nowcomm , it’s vital they understand of the following: 1. These days, hacking as a service is cheap. Security intelligence comes with a high pay off. All attacks are not sophisticated.

Cyber Risk

Cyber Risk Risk Cybersecurity Technology

Iran-linked APT is exploiting the Zerologon flaw in attacks

Security Affairs

OCTOBER 6, 2020

The Zerologon vulnerability, tracked as CVE-2020-1472 , is an elevation of privilege that resides in the Netlogon. An attacker could also exploit the flaw to disable security features in the Netlogon authentication process and change a computer’s password on the domain controller’s Active Directory. Pierluigi Paganini.

Authentication

Authentication Advertising Architecture Security Intelligence

European firm DSIRF behind the attacks with Subzero surveillance malware

Security Affairs

JULY 28, 2022

Microsoft states that multiple news reports have linked the company to the Subzero malware toolset used to hack a broad range of devices, phones, computers, and network and internet-connected devices. Confirm that Microsoft Defender Antivirus is updated to security intelligence update 1.371.503.0 Pierluigi Paganini.

Surveillance

Surveillance Malware Authentication DNS

Iran-linked APT groups continue to evolve

Security Affairs

NOVEMBER 17, 2021

Over the past year, Microsoft Threat Intelligence Center (MSTIC) has observed an evolution of the tools, techniques, and procedures employed by Iranian nation-state actors. Learn more from this blog summarizing these trends, as presented at #CyberWarCon : [link] — Microsoft Security Intelligence (@MsftSecIntel) November 16, 2021.

VPN

VPN Social Engineering Accountability Media

Best Identity and Access Management (IAM) Solutions for 2022

eSecurity Planet

JANUARY 27, 2022

Dashlane Password Manager provides companies with everything they need to onboard new employees, manage permissions and monitor security issues all from one place. It also includes advanced features such as SAML-based single sign-on (SSO) and the company's security architecture has never been hacked. Visit website.

Authentication

Authentication Artificial Intelligence Technology Marketing

Cyber Security Informer

Hackers are using Zerologon exploits in attacks in the wild

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Trending Sources

STRRAT RAT spreads masquerading as ransomware

Office 365 phishing campaign uses redirector URLs and detects sandboxes to evade detection

Microsoft, Italy and the Netherlands agencies warn of EMOTET campaigns

CISA alert warns of Emotet attacks on US govt entities

Crooks continues to use COVID-19 lures, Microsoft warns

More Than 90 Percent of Malware in Q2 Came Via Encrypted Traffic: WatchGuard

Why access management needs to evolve beyond passwords

7 Insights About Managing Cyber Risk You Can’t Afford To Miss

Iran-linked APT is exploiting the Zerologon flaw in attacks

European firm DSIRF behind the attacks with Subzero surveillance malware

Iran-linked APT groups continue to evolve

Best Identity and Access Management (IAM) Solutions for 2022

Stay Connected