#Microsoft #microsoft #EN

Octo Tempest crosses boundaries to facilitate extortion, encryption, and destruction

Microsoft has been tracking activity related to the financially motivated threat actor Octo Tempest, whose evolving campaigns represent a growing concern for many organizations across multiple industries.

#microsoft #EN #2023 #analysis #OctoTempest #campaigns #tactics

·microsoft.com·Nov 2, 2023

Octo Tempest crosses boundaries to facilitate extortion, encryption, and destruction

The evolution of Windows authentication

Discover how we’re securing authentication and reducing NTLM usage in Windows.

#microsoft #EN #2023 #NTLM #authentication #Windows #legacy

·techcommunity.microsoft.com·Oct 13, 2023

The evolution of Windows authentication

Microsoft Defender Flags Tor Browser as a Trojan and Removes it from the System

Windows users have recently begun mass-reporting that Microsoft's Defender antivirus program, which is integrated into Windows 10 and 11 by default, is

#deform #EN #2023 #TOR #Browser #Microsoft #Defender #antivirus

·deform.co·Oct 2, 2023

Microsoft Defender Flags Tor Browser as a Trojan and Removes it from the System

38TB of data accidentally exposed by Microsoft AI researchers | Wiz Blog

Wiz Research found a data exposure incident on Microsoft’s AI GitHub repository, including over 30,000 internal Microsoft Teams messages – all caused by one misconfigured SAS token

#wiz #EN #2023 #GitHub #Microsoft #leak

·wiz.io·Sep 19, 2023

38TB of data accidentally exposed by Microsoft AI researchers | Wiz Blog

Leaked Microsoft documents hint at new Doom and Dishonored games

Bethesda's roadmap for the fiscal years starting in 2020 and ending in 2024 has made its way online as part of the documents leaked from the FTC v. Microsoft case.

#engadget #EN #2023 #Bethesda #Microsoft #Microsoft-Gaming #Leak #Unredacted

·engadget.com·Sep 19, 2023

Leaked Microsoft documents hint at new Doom and Dishonored games

Microsoft AI Employee Accidentally Leaks 38TB of Data

A software repository on GitHub dedicated to supplying open-source code and AI models for image recognition was left open to manipulation by bad actors thanks to an insecure URL.

#pcmag #EN #2023 #DataLeak #GitHub #Microsoft #38TB

·pcmag.com·Sep 18, 2023

Microsoft AI Employee Accidentally Leaks 38TB of Data

Microsoft to defend customers on AI copyright challenges

Microsoft will pay legal damages on behalf of customers using its artificial intelligence (AI) products if they are sued for copyright infringement for the output generated by such systems, the company said on Thursday.

#reuters #EN #2023 #Microsoft #pay #AI #copyright #legal #damages

·reuters.com·Sep 12, 2023

Microsoft to defend customers on AI copyright challenges

Microsoft pledges legal protection for AI-generated copyright breaches

US tech giant will assume customers’ liability for material created by AI assistants in Word and coding tools

#ft #EN #2023 #Microsoft #AI #legal #AI-generated #copyright #breaches

·ft.com·Sep 8, 2023

Microsoft pledges legal protection for AI-generated copyright breaches

Compromised Microsoft Key: More Impactful Than We Thought

Our investigation of the security incident disclosed by Microsoft and CISA and attributed to Chinese threat actor Storm-0558, found that this incident seems to have a broader scope than originally assumed. Organizations using Microsoft and Azure services should take steps to assess potential impact.

#wiz #EN #2023 #Microsoft #Key #OWA #postmortem #analysis #Storm-0558

·wiz.io·Sep 7, 2023

Compromised Microsoft Key: More Impactful Than We Thought

Chinese Microsoft hackers also hit GOP Rep. Don Bacon of Nebraska

Rep. Don Bacon tweeted Monday that he had been notified by the FBI that his emails had been hacked.

#washingtonpost #EN #2023 #US #Microsoft #cloud #DonBacon #FBI #emails #hacked #outlook #China

·washingtonpost.com·Aug 20, 2023

Chinese Microsoft hackers also hit GOP Rep. Don Bacon of Nebraska

'DoubleDrive' attack turns Microsoft OneDrive into ransomware

Microsoft's OneDrive file-sharing program can be used as ransomware to encrypt most of the files on a target machine without possibility of recovery, partly because the program is inherently trusted by Windows and endpoint detection and response programs (EDRs). Presentation blackhat

#scmagazine #EN #2023 #OneDrive #Microsoft #ransomware

·scmagazine.com·Aug 16, 2023

'DoubleDrive' attack turns Microsoft OneDrive into ransomware

Microsoft’s Role in Email Breach by Suspected Chinese Hackers Part of US Inquiry

A US cybersecurity advisory panel will investigate risks in cloud computing, including Microsoft Corp.’s role in a recent breach of government officials’ email accounts by suspected Chinese hackers, according to two people familiar with the matter. The Cyber Safety Review Board, which was created by the Biden administration to investigate major cybersecurity events, will focus on risks to cloud computing infrastructure broadly, including identity and authentication management, and will examine all relevant cloud service providers, according to a Department of Homeland Security official. The issue was brought into focus by the breach of Microsoft’s email systems, the official said. Both people asked not to be named so they could discuss sensitive information.

#Bloomberg #EN #2023 #Microsoft #cloud #investigate #US #Email #Breach #Inquiry

·archive.ph·Aug 12, 2023

Microsoft’s Role in Email Breach by Suspected Chinese Hackers Part of US Inquiry

Midnight Blizzard conducts targeted social engineering over Microsoft Teams

Microsoft Threat Intelligence has identified highly targeted social engineering attacks using credential theft phishing lures sent as Microsoft Teams chats by the threat actor that Microsoft tracks as Midnight Blizzard (previously tracked as NOBELIUM).

#microsoft #EN #2023 #research #Social-engineering #NOBELIUM #MidnightBlizzard #Teams

·microsoft.com·Aug 4, 2023

Midnight Blizzard conducts targeted social engineering over Microsoft Teams

Tenable CEO accuses Microsoft of negligence in addressing security flaw

Cybersecurity veteran Amit Yoran says Microsoft has a culture of toxic obfuscation when it comes to addressing security threats.

#CyberScoop #EN #2023 #Amit-Yoran #toxic #Microsoft

·cyberscoop.com·Aug 4, 2023

Tenable CEO accuses Microsoft of negligence in addressing security flaw

Russia-backed hackers used Microsoft Teams to breach government agencies | TechCrunch

Russian state-sponsored hackers posed as technical support staff on Microsoft Teams to compromise dozens of global organizations, including government agencies.

#techcrunch #EN #2023 #state-sponsored #hackers #technical-support #Microsoft #Teams #APT29

·techcrunch.com·Aug 3, 2023

Russia-backed hackers used Microsoft Teams to breach government agencies | TechCrunch

Cryptojacking: Understanding and defending against cloud compute resource abuse

Cloud cryptojacking, a type of cyberattack that uses computing power to mine cryptocurrency, could result in financial loss to targeted organizations due to the compute fees that can be incurred from the abuse.

#microsoft #en #2023 #report #cryptojacking #cloud #defending

·microsoft.com·Jul 26, 2023

Cryptojacking: Understanding and defending against cloud compute resource abuse

Microsoft changes signing key system breached by Chinese hackers to steal US gov’t data

Microsoft has announced changes to a system that was exploited by Chinese hackers over the last month that allowed them to access email accounts and spy on the inner workings of two dozen organizations, including government agencies, a lawmaker’s staff and even Commerce Secretary Gina Raimondo.

#therecord #EN #2023 #Microsoft #breached #Storm0558 #key #AAD

·therecord.media·Jul 14, 2023

Microsoft changes signing key system breached by Chinese hackers to steal US gov’t data

Chinese hackers breached US government email accounts, Microsoft and White House say | CNN Politics

China-based hackers have breached email accounts at two-dozen organizations, including some United States government agencies, in an apparent spying campaign aimed at acquiring sensitive information, according to statements from Microsoft and the White House late Tuesday.

#cnn #EN #2023 #China #US #Microsoft #breached #Storm0558

·edition.cnn.com·Jul 13, 2023

Chinese hackers breached US government email accounts, Microsoft and White House say | CNN Politics

Apple & Microsoft Patch Tuesday, July 2023 Edition

Microsoft Corp. today released software updates to quash 130 security bugs in its Windows operating systems and related software, including at least five flaws that are already seeing active exploitation. Meanwhile, Apple customers have their own zero-day woes again this…

#krebsonsecurity #EN #2023 #PatchTuesday #july23023 #Microsoft

·krebsonsecurity.com·Jul 12, 2023

Apple & Microsoft Patch Tuesday, July 2023 Edition

KB5029033: Notice of additions to the Windows Driver.STL revocation list - Microsoft Support

The Microsoft Windows Hardware Compatibility Program (WHCP) certifies that drivers, and other products, run reliably on Windows and on Windows certified hardware. First reported by Sophos, and later Trend Micro and Cisco, Microsoft has investigated and confirmed a list of third-party WHCP-certified drivers used in cyber threat campaigns. Because of the drivers’ intent and functionality, Microsoft has added them to the Windows Driver.STL revocation list.

#microsoft #EN #2023 #drivers #signed #Microsof-signed #blocklist

·support.microsoft.com·Jul 12, 2023

KB5029033: Notice of additions to the Windows Driver.STL revocation list - Microsoft Support

Storm-0978 attacks reveal financial and espionage motives

Microsoft has identified a phishing campaign conducted by the threat actor tracked as Storm-0978 targeting defense and government entities in Europe and North America. The campaign involved the abuse of CVE-2023-36884, which included a zero-day remote code execution vulnerability exploited via Microsoft Word documents.

#microsoft #EN #2023 #Storm-0978 #Follina #CVE-2023-36884 #ero-day #remote #phishing

·microsoft.com·Jul 11, 2023

Storm-0978 attacks reveal financial and espionage motives

The five-day job: A BlackByte ransomware intrusion case study

In a recent investigation by Microsoft Incident Response of a BlackByte 2.0 ransomware attack, we found that the threat actor progressed through the full attack chain, from initial access to impact, in less than five days, causing significant business disruption for the victim organization.

#microsoft #EN #2023 #BlackByte #ransomware #attack #report

·microsoft.com·Jul 8, 2023

The five-day job: A BlackByte ransomware intrusion case study

Microsoft Teams vulnerability allows attackers to deliver malware to employees

Security researchers have found a bug that could allow attackers to deliver malware directly into employees' Microsoft Teams inbox.

#helpnetsecurity #EN #2023 #Microsoft #Teams #bug #malware

·helpnetsecurity.com·Jun 28, 2023

Microsoft Teams vulnerability allows attackers to deliver malware to employees

Ongoing phishing campaign can hack you even when you’re protected with MFA

Campaign that steals email has targeted at least 10,000 organizations since September.

#arstechnica #EN #2022 #phishing #microsoft #MFA #campaign

·arstechnica.com·Jul 17, 2022

Ongoing phishing campaign can hack you even when you’re protected with MFA

Cybersecurity experts question Microsoft's Ukraine report

Leading cybersecurity experts and foreign policy scholars raise serious questions and concerns about Microsoft's report on the Ukraine war.

#Cyberscoop #EN #2022 #Microsoft #report #Russia-Ukraine-war

·cyberscoop.com·Jul 8, 2022

Cybersecurity experts question Microsoft's Ukraine report

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

Microsoft says that a recently spotted Windows worm has been found on the networks of hundreds of organizations from various industry sectors.

#Bleepingcomputer #EN #2022 #Malware #Microsoft #Raspberry-Robin #raspberryrobin #USB #Windows #Worm #Security #Detection

·bleepingcomputer.com·Jul 3, 2022

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

7-zip now supports Windows ‘Mark-of-the-Web’ security feature

7-zip has finally added support for the long-requested 'Mark-of-the-Web' Windows security feature, providing better protection from malicious downloaded files.

#bleepingcomputer #EN #2022 #7-Zip #Mark-of-the-Web #MoTW #Windows #Microsoft

·bleepingcomputer.com·Jun 25, 2022

7-zip now supports Windows ‘Mark-of-the-Web’ security feature

Defending Ukraine: Early Lessons from the Cyber War

This report represents research conducted by Microsoft’s threat intelligence and data science teams with the goal of sharpening our understanding of the threat landscape in the ongoing war in Ukraine. The report also offers a series of lessons and conclusions resulting from the data gathered and analyzed. Notably, the report reveals new information about Russian efforts including an increase in network penetration and espionage activities amongst allied governments, non-profits and other organizations outside Ukraine. This report also unveils detail about sophisticated and widespread Russian foreign influence operations being used among other things, to undermine Western unity and bolster their war efforts. We are seeing these foreign influence operations enacted in force in a coordinated fashion along with the full range of cyber destructive and espionage campaigns. Finally, the report calls for a coordinated and comprehensive strategy to strengthen collective defenses – a task that will require the private sector, public sector, nonprofits and civil society to come together. The foreword of this new report, written by Microsoft President and Vice Chair Brad Smith, offers additional detail below.

#microsoft #EN #2022 #cyberwar #Russia-Ukraine-war #espionage #report #influence #operations #cyberoperations

·blogs.microsoft.com·Jun 23, 2022

Defending Ukraine: Early Lessons from the Cyber War

FBI says fraud on LinkedIn a 'significant threat' to platform and consumers

Fraudsters who target LinkedIn users in sophisticated investment schemes pose a "significant threat" to the platform, the FBI tells CNBC.

#cnbc #EN #2022 #LinkedIn #fraud #FBI #Microsoft #Cryptocurrency #Politics

·cnbc.com·Jun 22, 2022

FBI says fraud on LinkedIn a 'significant threat' to platform and consumers

Lapsus$ hackers leak 37GB of Microsoft's alleged source code

The Lapsus$ hacking group claims to have leaked the source code for Bing, Cortana, and other projects stolen from Microsoft's internal Azure DevOps server.

#Bing #Cortana #Extortion #Lapsus$#Microsoft #Source-Code #EN #2022 #leak

·bleepingcomputer.com·Mar 22, 2022

Lapsus$ hackers leak 37GB of Microsoft's alleged source code