This custom backdoor lets attackers remotely steal tokens and certificates from Microsoft’s identity platform.
Source: Read More (Latest topics for ZDNet in Security)
You might be interested in …
[BleepingComputer] Microsoft Defender for Identity now detects PrintNightmare attacks
Microsoft has added support for PrintNightmare exploitation detection to Microsoft Defender for Identity to help Security Operations teams detect attackers’ attempts to abuse this critical vulnerability. […] Source: Read More (BleepingComputer)
[ThreatPost] On the Taxonomy and Evolution of Ransomware
Not all ransomware is the same! Oliver Tavakoli, CTO at Vectra AI, discusses the different species of this growing scourge. Source: Read More (Threatpost)
Daily NCSC-FI news followup 2021-11-15
FBI Statement on Incident Involving Fake Emails www.fbi.gov/news/pressrel/press-releases/fbi-statement-on-incident-involving-fake-emails The FBI is aware of a software misconfiguration that temporarily allowed an actor to leverage the Law Enforcement Enterprise Portal (LEEP) to send fake emails.. No actor was able to access or compromise any data or PII on the FBIs network. Emotet botnet returns after law enforcement […]