[SecurityWeek] Hundreds of Thousands of Credentials Leaked Due to Microsoft Exchange Protocol Flaw

Cybersecurity researchers have been able to capture hundreds of thousands of Windows domain and application credentials due to the design and implementation of the Autodiscover protocol used by Microsoft Exchange.

read more

Source: Read More (SecurityWeek RSS Feed)

You might be interested in …

[SANS ISC] Look Alike Accounts Used in Ukraine Donation Scam impersonating Olena Zelenska, (Mon, Mar 14th)

All posts, Sans-ISC

Earlier, I saw the following account being flagged on Twitter: The account attempts to impersonate Olena Zelenska, the first lady of Ukraine. Mrs. Zelenska has a legitimate, private account (https://twitter.com/OlenaZelenska34). So what is the difference between: https://twitter.com/OlenaZelenska34 and https://twitter.com/OlenaZeIenska34 ? If you look closely: The fake account uses an upper case I (I) instead of […]

Read More

[SecurityWeek] Iran-Linked OilRig APT Caught Using New Backdoor

All posts, Security Week

The Iran-linked hacking group OilRig was observed using a new backdoor in an attack against a government official within Jordan’s foreign ministry, according to new research published this week. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[HackerNews] Cisco Issues Critical Security Patches to Fix Small Business VPN Router Bugs

All posts, HackerNews

Networking equipment major Cisco has rolled out patches to address critical vulnerabilities impacting its Small Business VPN routers that could be abused by a remote attacker to execute arbitrary code and even cause a denial-of-service (DoS) condition. The issues, tracked as CVE-2021-1609 (CVSS score: 9.8) and CVE-2021-1610 (CVSS score: 7.2), reside in the web-based management […]

Read More

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.