This custom backdoor lets attackers remotely steal tokens and certificates from Microsoft’s identity platform.
Source: Read More (Latest topics for ZDNet in Security)
You might be interested in …
[HackerNews] Authorities Seize DoubleVPN Service Used by Cybercriminals
A coordinated international law enforcement operation resulted in the takedown of a VPN service called DoubleVPN for providing a safe haven for cybercriminals to cover their tracks. “On 29th of June 2021, law enforcement took down DoubleVPN,” the agencies said in a seizure notice splashed on the now-defunct site. “Law enforcement gained access to the […]
Daily NCSC-FI news followup 2020-01-21
Infiltrating Networks: Easier Than Ever Due to Evil Markets www.bleepingcomputer.com/news/security/infiltrating-networks-easier-than-ever-due-to-evil-markets/ Attackers don’t always need to breach the networks of their victims themselves to plant malware as there are plenty of professional intruders offering their services on underground markets.. Various levels of access are offered for prices starting $1,000 and increasing depending on how deep the […]
[SecurityWeek] Enterprises Warned of New PetitPotam Attack Exposing Windows Domains
Enterprises have been warned of a new attack method that can be used by malicious actors to take complete control of a Windows domain. read more Source: Read More (SecurityWeek RSS Feed)