-1.webp?w=324&resize=324,235&ssl=1 "Hackers Use Weaponized LNK Files to Exploit Microsoft Connection Manager Profile")
Hackers Use Weaponized LNK Files to Exploit Microsoft Connection Manager Profile
Threat actors have shifted from using malicious macros to malicious LNK files for initial access. This is due to Microsoft's announcement in 2022 to disable macros by default for Office documents downloaded from unknown...
Top 20 Most Exploited Vulnerabilities: Microsoft Products Draw Hackers
Finding and patching the open vulnerabilities in today's threat landscape is one of the utmost priorities for security researchers and analysts.
Identifying weaponized high-risk CVEs actively targeted by Threat Actors and ransomware in the vast...
Windows Update Addressed 2 Zero-Days and 52 Other Vulnerabilities
Microsoft has released its Patch Tuesday update, which includes 59 vulnerabilities along with two Zero-Days. The severity for these vulnerabilities ranges from 4.3 (Medium) to 8.8 (High).
Categories of the vulnerabilities patched include Information Disclosure...
Microsoft AI Researchers Leaked 38TB of Secrets, Private Keys, & Passwords
In a recent incident, the Microsoft AI research team inadvertently exposed a staggering 38 terabytes of private data on their GitHub repository.
This exposure resulted from the misconfiguration of an Azure feature known as SAS...
Chinese Hackers Breached Microsoft’s Email Platform to Steal 60,000+ US Govt Emails
In a significant cybersecurity breach, Chinese hackers successfully infiltrated Microsoft's email platform earlier this year, leading to the theft of tens of thousands of emails from the U.S. State Department accounts, according to information...
Microsoft SharePoint Server Vulnerabilities Chained to Achieve Remote Code Execution
Microsoft SharePoint Server was reported with two vulnerabilities, CVE-2023-29357 and CVE-2023-24955, which threat actors can use for achieving remote code execution (RCE) against Microsoft SharePoint Server.
These vulnerabilities were discovered as part of the Zero...
Windows Server Running SMB over QUIC Let Attacker Launch DoS Attacks
QUIC, created by Google, is a modern transport layer protocol aimed at enhancing connection reliability and security while addressing latency and packet loss issues utilizing UDP.
Microsoft's QUIC implementation is known as MsQuic, utilized for...
Microsoft Teams & Edge Zero-Day Vulnerabilities Leads to Code Execution
Microsoft has addressed two zero-day vulnerabilities in two Open-Source Software security vulnerabilities, which include Microsoft Edge, Microsoft Teams for Desktop, Skype for Desktop, and Webp images extension.
These vulnerabilities were previously reported and had the...
EvilProxy Attacking Microsoft 365 Users Abusing Open Redirection With Indeed.com
A recent phishing campaign, identified by Menlo Labs, has been actively targeting executives in senior roles across multiple industries, with a primary focus on Banking and Financial Services, Insurance providers, Property Management and Real...
Large-scale Akira Ransomware Attacking Unsecured Computers
In order to disrupt human-operated ransomware attacks and prevent attackers from advancing their objectives through lateral movement, it is crucial to swiftly contain any compromised user accounts.
Taking this step is essential to limit...
Recent Posts
WhatsApp’s New Advanced Chat Privacy Feature to Protect Sensitive Conversations
WhatsApp has announced the rollout of its new "Advanced Chat Privacy" feature, designed to give users greater control over the confidentiality of their conversations....