The infamous Hafnium group which successfully targeted on-premises Microsoft Exchange servers is now going after Windows using Tarrask malware which evades detection by cleaning its activities.
Attack RSS
Ubisoft has acknowledged it suffered a "cybersecurity incident". As a precaution, the game publisher has reset all internal passwords. All its games and services are functioning normally.
Certain health data management systems in Brazil have suffered a cyberattack, with COVID-19 vaccination data allegedly being deleted. The government has been unable to recover the data so far.
This week, Microsoft released the usual Patch Tuesday updates, which this month included Windows 11 as well. A fix for AMD Ryzen performance issues on Windows 11 rolled out, and much more.
Several major Indian news outlets have been airing footage about Pakistan's alleged attack on Panjshir Valley in Afghanistan. The problem? The "concrete proof" is gameplay footage from Arma 3.
Microsoft has announced the release of the first public dataset from its open-source SimuLand initiative. The telemetry and logging data can be used to facilitate security research in organizations.
Microsoft has revealed that on-premises Exchange servers are under attack from a state-sponsored group operating from China and utilizing 0-day exploits. Exchange Online is safe from the threat.
Microsoft has concluded that the Solorigate attacker was only able to get access to a small number of code files for Azure, Exchange, and Intune, and those did not contain live customer data.
In a sternly worded letter, Microsoft has urged world leaders to unite and take action against cybercrime groups from North Korea and Russia, among others, which are attacking healthcare institutions.
Microsoft has developed a new machine learning model in order to autonomously detect password spray attacks. The model has vastly improved performance compared to its previous heuristic mechanism.
Mexico's economy ministry detected a cyber attack on Sunday. It has since increased its security measures, the company said in a statement. It believes that no sensitive information was compromised.
NordVPN has acknowledged that there was a breach of one of its datacenters back in March 2018 and that it has only known about the issue for a few months. Most users were unaffected by the breach.
A report claims that WhatsApp has been the target of a surveillance attack developed by Israel-based security firm NSO Group. WhatsApp has confirmed the vulnerability and is still investigating.
DailyMotion has reportedly suffered a credential stuffing attack, which has resulted in a "limited" number of accounts being compromised. The exact scale of the attack is currently unknown.
Microsoft is hosting a competition where it wants people to create an AI model - using 9.4GB of anonymous data collected from 16.8 million machines - that detects malware attacks before they happen.
Facebook has updated us on the situation regarding the View As attack that came to light a few weeks ago. Those affected are fewer than thought and those who were will be contacted soon.
Facebook has said that it is temporarily disabling the View As feature after it discovered an exploit in the feature which led to attacks against 50 million user accounts. It notified all affected.
A new bug has been uncovered in Ubuntu and possibly other Linux distributions in which an attacker with physical access to the computer can bypass the lock screen after suspending the machine.
Microsoft's Windows Defender has reportedly prevented a "massive" coin mining malware outbreak. Users on Windows 7, 8.1, and 10 are safe, but Microsoft encouraged them to use Windows 10 or 10 S.
The tools to perform a terabit-level DDoS attack were made available this week with a list of 17,000 IP addresses of unsecured memcached servers. The same attack was used against GitHub last week.
According to the data gathered, attacks with the end goal of installing malicious crypto miners have increased by 1.5 times between 2016 and the end of 2017, netting criminals a hefty sum of money.
The hosting service experienced a massive surge of 1.35 Tbps in traffic as part of what may be the largest DDoS attack ever conducted. The attack lasted eight minutes before being mitigated.
The popular bitcoin wallet, Electrum, has been patched to fend off a JavaScript attack that had been discovered. All users should install the updated client as soon as possible to be safe.
A new phishing scam pretending to be from Netflix has recently been discovered, telling recipients that their subscription has expired, and they have to "re-activate" to continue enjoying the service.
According to a report from Politico, White House Chief of Staff John Kelly's personal phone has been compromised for months. The digital attack came to light after Kelly complained about glitches.
With the Internet-of-Things becoming something that is part of our everyday lives, cyber security has become a hot topic, with the most recent threat being to internet connected pacemakers.
Wikileaks has exposed a targeted attack against systems running Linux with traffic re-routing malware known as 'OutlawCountry', after a massive data dump by the controversial online leaker.
Following the recent Petya ransomware attack, Microsoft has detailed the extent and functioning of the outbreak, recovery options for infected machines, and the multi-layered defense in Windows 10.
Some users are unable to properly access Steam servers during the the 2017 Summer Sale. Hacker group CyberTeam claimed responsibility and promised a full attack targeting all servers is on the way.
Yahoo explained that the source code it uses to generate cookies was stolen, enabling "state-sponsored" parties to gain access to users' accounts through the use of "forged cookies".
Activists from Fight for the Future have launched a new tech support hotline for non-technology-savvy members of Congress who are clueless about last week's DDoS attacks.
Waves of DDoS cyber attacks have hit at least two internet service providers this morning, causing popular websites like Netflix, Twitter, and Reddit to go offline for an extended period of time.
A Microsoft executive has argued that recent malware attacks have proved that iOS is as vulnerable as Android, and that organizations should preemptively arm themselves against exploits.
Ransomware attacks in the United States have hit an unprecedented all-time high during the month of April, with a nearly 159% jump in attacks from March.
A new attack pattern has been discovered online, where older Android devices are being infected with ransomware just by visiting certain sites. The attack uses exploits leaked from the Hacking Team.
Hacktivist collective Anonymous is warning the terrorist group, ISIS, to be afraid, after attacks in Brussels earlier this week. Anonymous says it's continuing its campaign against the terrorists.
A zero-day exploit was found in the Linux kernel, which leaves hundreds of millions vulnerable to attack. Android users are most vulnerable due to lack of security patches and outdated OS versions.
As part of improving security for the users of its Outlook.com email service, Microsoft has announced that it will now warn users if a government is trying to hack into their account.
While hacking group Phantom Squad says that it plans to knock Xbox Live and PSN offline over Christmas, rival group 'SkidNP' says it "will be attacking Steam and Minecraft servers".
_-_img_1104_medium.jpg)
A supercomputer at the Bureau of Meteorology has believed to have been breached by hackers from China, potentially compromising several other Australian Government agencies.
