Microsoft Warns of Multi-stage Phishing Campaign Leveraging Azure AD Microsoft’s threat analysts have uncovered a large-scale, multi-phase phishing campaign that uses stolen credentials to register devices onto the target’s network and use them to distribute phishing emails. As the report highlights, the attacks manifested only through accounts that didn’t have Read more…
Microsoft: Windows 11 Now in Broad Deployment for Eligible Devices Microsoft says Windows 11 has now entered the broad deployment phase, making it available for everyone with an eligible device via Windows Update. This means that Windows 11 21H2, the latest release, will be offered to all Windows devices not affected Read more…
Russian APT29 Hackers’ Stealthy Malware Undetected for Years EXCLUSIVE: Hackers associated with the Russian Federation Foreign Intelligence Service (SVR) continued their incursions on networks of multiple organizations after the SolarWinds supply-chain compromise using two recently discovered sophisticated threats. The malicious implants are a variant of the GoldMax backdoor for Linux systems Read more…
Microsoft Mitigated a Record 3.47 Tbps DDoS Attack on Azure Users Microsoft says its Azure DDoS protection platform mitigated a massive 3.47 terabits per second (Tbps) distributed denial of service (DDoS) attack targeting an Azure customer from Asia in November. Two more large size attacks followed this in December, also targeting Asian Azure Read more…
105 million Android Users Targeted by Subscription Fraud Campaign A premium services subscription scam for Android has been operating for close to two years. Called ‘Dark Herring’, the operation used 470 Google Play Store apps and affected over 100 million users worldwide, potentially causing hundreds of millions of USD in total losses. Read more…
Linux Version of LockBit Ransomware Targets VMware ESXi Servers LockBit is the latest ransomware gang whose Linux encryptor has been discovered to be focusing on the encryption of VMware ESXi virtual machines. The enterprise is increasingly moving to virtual machines to save computer resources, consolidate servers, and for easier backups. Read more…
Major Discord API Outage Prevents Logins and Voice Chats Discord is suffering a ‘massive outage’ preventing users from logging in to the service or using voice chats. The outage started at 2:49 PM EST and was originally caused by a widespread API outage. However, after resolving the issue, Discord reported Read more…
Apple Fixes New Zero-day Exploited to Hack macOS, iOS Devices Apple has released security updates to fix two zero-day vulnerabilities, with one publicly disclosed and the other exploited in the wild by attackers to hack into iPhones and Macs. The first zero-day patched today (tracked as CVE-2022-22587) [1, 2] is a Read more…
Chaes Banking Trojan Hijacks Chrome with Malicious Extensions A large-scale campaign involving over 800 compromised WordPress websites is spreading banking trojans that target the credentials of Brazilian e-banking users. The trojan used in this campaign is called ‘Chaes,’ and according to researchers from Avast, its been actively spreading since late Read more…
White House Wants US Govt to Use a Zero Trust Security Model A newly released Federal strategy wants the US government to adopt a “zero trust” security model within the next two years to defend against current threats and boost cybersecurity defenses across federal agencies. The strategy was released today Read more…
Let us help you out.
Singapore
7 Temasek Boulevard
#12-07, Suntec Tower One
Singapore 038987
Thailand
The Royal Place 1
2, 2/399 Mahatlek Luang 1 Alley, Lumphini, Pathum Wan, Bangkok 10330, Thailand
Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!
Click one of our contacts below to chat on WhatsApp
