Tag Microsoft

April 12, 2025

Russia’s Storm-2372 Targets Organizations with MFA Bypass Using Device Code Phishing Techniques

Storm-2372, a Russian state-backed APT group, utilizes device code phishing to circumvent Multi-Factor Authentication (MFA), targeting sectors including government, technology, finance, defense, and healthcare. Recent research by cybersecurity analysts at SOCRadar has uncovered an evolving tactic employed by the notorious Russian advanced persistent threat group, Storm-2372. This group has demonstrated…

April 11, 2025

The Groan You Hear: Users’ Response to Recall Reintegrating into Windows

Security and privacy experts are preparing for renewed concerns regarding Recall, an AI feature being integrated into Windows 11 that captures screenshots, indexes user activity, and stores this data every three seconds. First unveiled in May 2024, Recall faced widespread criticism from security professionals who highlighted that it could serve…

April 11, 2025

Ransomware Threatens Active Directory Domain Controllers

Active Directory, Fraud Management & Cybercrime, Ransomware Microsoft Issues Warning: Domain Controllers Used by Ransomware Hackers to Deliver Malware Akshaya Asokan (asokan_akshaya) • April 11, 2025 (Image: Shutterstock) Microsoft has alerted organizations that ransomware groups are increasingly targeting Active Directory (AD) domain controllers to escalate privileges within compromised networks. This…

April 11, 2025

Port of Seattle Informs 90,000 Affected Individuals

Cybercrime, Fraud Management & Cybercrime, Incident & Breach Response Oracle Refutes Cloud Breach Claims, Attributes Hack to Outdated Servers Anviksha More (AnvikshaMore) • April 10, 2025 Image: Shutterstock / ISMG Each week, Information Security Media Group compiles reports on cybersecurity incidents and breaches from around the globe. Recent highlights include…

April 10, 2025

Trump Responds to Former Cybersecurity Chief’s Actions

Trump Orders Review of Chris Krebs’ Security Clearance Following Disputed Election Claims In a notable development in the ongoing discourse surrounding the integrity of the 2020 presidential election, U.S. President Donald Trump has directed an investigation into the actions of former cybersecurity chief Chris Krebs. This move is widely interpreted…

April 9, 2025

Russian APT Hacker Identified Utilizing Unconventional RDP Techniques

Espionage Campaign Targets European Organizations Using Innovative RDP Exploits A recent cyber incident has emerged, involving a Russian nation-state cyber actor known as UNC5837, which has effectively exploited lesser-known features of Microsoft Windows Remote Desktop Protocol (RDP) to launch espionage campaigns against European organizations. According to a report from the…

April 6, 2025

Rapid Advancements in AI: Implications for Security

The pace of artificial intelligence (AI) innovation is accelerating at an unprecedented rate. Major technology companies such as Salesforce, Microsoft, and Google are embarking on a race to make agentic AI accessible to a broader audience. Recent market research indicates that a substantial 82% of organizations are planning to implement…

April 1, 2025

OpenAI Secures $40 Billion in Historic Private Funding Round

Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development OpenAI Secures $40 Billion Funding, Navigates Structural Changes Rashmi Ramesh • April 1, 2025 Image: Shutterstock OpenAI recently concluded a massive $40 billion funding round, heralded as the largest venture capital investment in the tech sector to date. This substantial…

April 1, 2025

Microsoft Teams Vishing Attack Leverages TeamViewer to Distribute Malware

Vishing Attack Leads to Environment Compromise at Ontinue’s Cyber Defense Centre The Cyber Defense Centre (CDC) at Ontinue has recently examined an alarming security breach that underscores the potential dangers of vishing calls. This incident illustrates how a seemingly innocuous voice phishing attack can escalate into a comprehensive compromise of…