Neowin News Feed for: Attack

Microsoft Windows under attack from Hafnium group's 'Tarrask' malware

Alap Naik Desai — Wed, 13 Apr 2022 00:26:01 +0000

The infamous Hafnium group which successfully targeted on-premises Microsoft Exchange servers is now going after Windows using Tarrask malware which evades detection by cleaning its activities. Read more...

Ubisoft suffers 'cybersecurity incident' and initiates company-wide password reset

Alap Naik Desai — Fri, 11 Mar 2022 22:34:02 +0000

Ubisoft has acknowledged it suffered a "cybersecurity incident". As a precaution, the game publisher has reset all internal passwords. All its games and services are functioning normally. Read more...

Brazil suffers cyberattack on health systems, vaccination data still not recovered

Usama Jawad — Sat, 11 Dec 2021 14:48:02 +0000

Certain health data management systems in Brazil have suffered a cyberattack, with COVID-19 vaccination data allegedly being deleted. The government has been unable to recover the data so far. Read more...

Microsoft Weekly: Patch Tuesday, Windows 11 builds, and Xbox Series X "Mini Fridge"

Abhay V — Mon, 18 Oct 2021 00:16:01 +0000

This week, Microsoft released the usual Patch Tuesday updates, which this month included Windows 11 as well. A fix for AMD Ryzen performance issues on Windows 11 rolled out, and much more. Read more...

Indian media claims Arma 3 gameplay footage is proof that Pakistan helped Taliban

Usama Jawad — Tue, 07 Sep 2021 10:16:01 +0000

Several major Indian news outlets have been airing footage about Pakistan's alleged attack on Panjshir Valley in Afghanistan. The problem? The "concrete proof" is gameplay footage from Arma 3. Read more...

Microsoft releases first SimuLand dataset publicly to facilitate security research

Usama Jawad — Fri, 06 Aug 2021 06:42:01 +0000

Microsoft has announced the release of the first public dataset from its open-source SimuLand initiative. The telemetry and logging data can be used to facilitate security research in organizations. Read more...

On-premises Exchange servers are under attack from a state-sponsored group

Usama Jawad — Wed, 03 Mar 2021 13:04:01 +0000

Microsoft has revealed that on-premises Exchange servers are under attack from a state-sponsored group operating from China and utilizing 0-day exploits. Exchange Online is safe from the threat. Read more...

Microsoft: Customer data was not accessed in Solorigate attack

Usama Jawad — Fri, 19 Feb 2021 09:26:01 +0000

Microsoft has concluded that the Solorigate attacker was only able to get access to a small number of code files for Azure, Exchange, and Intune, and those did not contain live customer data. Read more...

Microsoft urges governments to fight against North Korean and Russian attacks on healthcare

Usama Jawad — Fri, 13 Nov 2020 15:10:01 +0000

In a sternly worded letter, Microsoft has urged world leaders to unite and take action against cybercrime groups from North Korea and Russia, among others, which are attacking healthcare institutions. Read more...

Microsoft develops new machine learning model to detect password spray attacks

Usama Jawad — Tue, 27 Oct 2020 04:56:01 +0000

Microsoft has developed a new machine learning model in order to autonomously detect password spray attacks. The model has vastly improved performance compared to its previous heuristic mechanism. Read more...

Mexico's economy ministry suffers a cyber attack

Usman Khan Lodhi — Tue, 25 Feb 2020 10:42:02 +0000

Mexico's economy ministry detected a cyber attack on Sunday. It has since increased its security measures, the company said in a statement. It believes that no sensitive information was compromised. Read more...

NordVPN admits it was compromised last year, plans external audit

Paul Hill — Tue, 22 Oct 2019 08:42:01 +0000

NordVPN has acknowledged that there was a breach of one of its datacenters back in March 2018 and that it has only known about the issue for a few months. Most users were unaffected by the breach. Read more...

WhatsApp confirms being targeted by a surveillance attack, possibly from Israeli firm

Usama Jawad — Tue, 14 May 2019 07:46:01 +0000

A report claims that WhatsApp has been the target of a surveillance attack developed by Israel-based security firm NSO Group. WhatsApp has confirmed the vulnerability and is still investigating. Read more...

DailyMotion target of credential stuffing attack, several accounts breached

Usama Jawad — Sun, 27 Jan 2019 14:16:01 +0000

DailyMotion has reportedly suffered a credential stuffing attack, which has resulted in a "limited" number of accounts being compromised. The exact scale of the attack is currently unknown. Read more...

Microsoft wants AI to detect malware attacks on Windows PCs before they happen

Usama Jawad — Fri, 14 Dec 2018 14:10:01 +0000

Microsoft is hosting a competition where it wants people to create an AI model - using 9.4GB of anonymous data collected from 16.8 million machines - that detects malware attacks before they happen. Read more...

Facebook sets up page letting users know how they were impacted in View As attack

Paul Hill — Fri, 12 Oct 2018 18:32:01 +0000

Facebook has updated us on the situation regarding the View As attack that came to light a few weeks ago. Those affected are fewer than thought and those who were will be contacted soon. Read more...

Facebook disables View As feature as it patches security hole that affected 50M

Paul Hill — Fri, 28 Sep 2018 18:02:45 +0000

Facebook has said that it is temporarily disabling the View As feature after it discovered an exploit in the feature which led to attacks against 50 million user accounts. It notified all affected. Read more...

Ubuntu bug allows anyone with physical access to bypass your lock screen

Paul Hill — Mon, 09 Jul 2018 15:20:02 +0000

A new bug has been uncovered in Ubuntu and possibly other Linux distributions in which an attacker with physical access to the computer can bypass the lock screen after suspending the machine. Read more...

Microsoft's Windows Defender prevents "massive" coin mining attack

Usama Jawad — Thu, 08 Mar 2018 14:10:01 +0000

Microsoft's Windows Defender has reportedly prevented a "massive" coin mining malware outbreak. Users on Windows 7, 8.1, and 10 are safe, but Microsoft encouraged them to use Windows 10 or 10 S. Read more...

Code for memcached-based DDoS attack is now public

Gabriel Nunes — Thu, 08 Mar 2018 02:24:01 +0000

The tools to perform a terabit-level DDoS attack were made available this week with a list of 17,000 IP addresses of unsecured memcached servers. The same attack was used against GitHub last week. Read more...

Kaspersky Lab: Cybercriminals made millions in 2017 through malicious miner distribution

Florin Bodnarescu — Mon, 05 Mar 2018 14:16:01 +0000

According to the data gathered, attacks with the end goal of installing malicious crypto miners have increased by 1.5 times between 2016 and the end of 2017, netting criminals a hefty sum of money. Read more...

GitHub suffers largest DDoS attack ever recorded

Muhammad Jarir Kanji — Thu, 01 Mar 2018 21:30:01 +0000

The hosting service experienced a massive surge of 1.35 Tbps in traffic as part of what may be the largest DDoS attack ever conducted. The attack lasted eight minutes before being mitigated. Read more...

Electrum bitcoin wallet patched to fix vulnerability

Paul Hill — Mon, 08 Jan 2018 14:16:01 +0000

The popular bitcoin wallet, Electrum, has been patched to fend off a JavaScript attack that had been discovered. All users should install the updated client as soon as possible to be safe. Read more...

New phishing scam sends out fake Netflix suspension emails

Justin Luna — Mon, 06 Nov 2017 14:44:01 +0000

A new phishing scam pretending to be from Netflix has recently been discovered, telling recipients that their subscription has expired, and they have to "re-activate" to continue enjoying the service. Read more...

White House Chief of Staff John Kelly's phone was compromised for months

Muhammad Jarir Kanji — Thu, 05 Oct 2017 23:20:01 +0000

According to a report from Politico, White House Chief of Staff John Kelly's personal phone has been compromised for months. The digital attack came to light after Kelly complained about glitches. Read more...

The FDA recalls 465,000 pacemakers which are at risk from possible hacking attacks

Dreyer Smit — Thu, 31 Aug 2017 13:54:01 +0000

With the Internet-of-Things becoming something that is part of our everyday lives, cyber security has become a hot topic, with the most recent threat being to internet connected pacemakers. Read more...

WikiLeaks reveals CIA targeting Linux users with OutlawCountry malware

Dreyer Smit — Mon, 03 Jul 2017 07:54:01 +0000

Wikileaks has exposed a targeted attack against systems running Linux with traffic re-routing malware known as 'OutlawCountry', after a massive data dump by the controversial online leaker. Read more...

Microsoft telemetry data reveals scale of Petya outbreak, and how Windows 10 security helps

Usama Jawad — Fri, 30 Jun 2017 13:55:31 +0000

Following the recent Petya ransomware attack, Microsoft has detailed the extent and functioning of the outbreak, recovery options for infected machines, and the multi-layered defense in Windows 10. Read more...

Steam servers experiencing issues following Summer Sale, possibly due to cyberattack

Muhammad Jarir Kanji — Thu, 22 Jun 2017 19:24:01 +0000

Some users are unable to properly access Steam servers during the the 2017 Summer Sale. Hacker group CyberTeam claimed responsibility and promised a full attack targeting all servers is on the way. Read more...

Yahoo is warning users that their accounts have been compromised using "forged cookies"

Andy Weir — Thu, 16 Feb 2017 19:24:01 +0000

Yahoo explained that the source code it uses to generate cookies was stolen, enabling "state-sponsored" parties to gain access to users' accounts through the use of "forged cookies". Read more...

Activists launch "Tech Support Hotline" for Congressmen clueless about cyber attacks

Jett Goldsmith — Tue, 25 Oct 2016 20:22:01 +0000

Activists from Fight for the Future have launched a new tech support hotline for non-technology-savvy members of Congress who are clueless about last week's DDoS attacks. Read more...

Massive DDoS attacks take down Twitter, Netflix, Reddit

Jett Goldsmith — Fri, 21 Oct 2016 19:18:01 +0000

Waves of DDoS cyber attacks have hit at least two internet service providers this morning, causing popular websites like Netflix, Twitter, and Reddit to go offline for an extended period of time. Read more...

Microsoft executive: iOS is as vulnerable as Android

Usama Jawad — Sat, 15 Oct 2016 15:26:01 +0000

A Microsoft executive has argued that recent malware attacks have proved that iOS is as vulnerable as Android, and that organizations should preemptively arm themselves against exploits. Read more...

Ransomware attacks hit all-time record high in April

Jett Goldsmith — Wed, 04 May 2016 22:28:01 +0000

Ransomware attacks in the United States have hit an unprecedented all-time high during the month of April, with a nearly 159% jump in attacks from March. Read more...

Drive-by attack is targeting older Android devices on porn sites

Vlad Dudau — Tue, 26 Apr 2016 10:26:01 +0000

A new attack pattern has been discovered online, where older Android devices are being infected with ransomware just by visiting certain sites. The attack uses exploits leaked from the Hacking Team. Read more...

Anonymous tells ISIS to 'be afraid' after Brussels attack

Vlad Dudau — Thu, 24 Mar 2016 11:38:01 +0000

Hacktivist collective Anonymous is warning the terrorist group, ISIS, to be afraid, after attacks in Brussels earlier this week. Anonymous says it's continuing its campaign against the terrorists. Read more...

Zero-day Linux kernel security flaw leaves millions of Android users vulnerable

Vlad Dudau — Tue, 19 Jan 2016 14:46:01 +0000

A zero-day exploit was found in the Linux kernel, which leaves hundreds of millions vulnerable to attack. Android users are most vulnerable due to lack of security patches and outdated OS versions. Read more...

Microsoft to warn email users of possible state-sponsored attacks

Justin Luna — Thu, 31 Dec 2015 12:54:01 +0000

As part of improving security for the users of its Outlook.com email service, Microsoft has announced that it will now warn users if a government is trying to hack into their account. Read more...

Hacking group 'SkidNP' says it plans to target Steam and Minecraft servers over Christmas

Andy Weir — Sat, 19 Dec 2015 09:38:01 +0000

While hacking group Phantom Squad says that it plans to knock Xbox Live and PSN offline over Christmas, rival group 'SkidNP' says it "will be attacking Steam and Minecraft servers". Read more...

China allegedly behind "massive" attack on Australian Government supercomputer

Matt Blowes — Wed, 02 Dec 2015 07:40:01 +0000

A supercomputer at the Bureau of Meteorology has believed to have been breached by hackers from China, potentially compromising several other Australian Government agencies. Read more...