Microsoft Shares New Guidance in Wake of 'Midnight Blizzard' Cyberattack
Threat actors created and abused OAuth apps to access Microsoft's corporate email environment and remain there for weeks.
Stay informed on the latest cyberattack trends, threats, and news with expert analysis and updates. Secure your digital landscape now.
Search across headline titles and summaries.
Background for this topic.
Cyberattack is an intentional attempt to compromise computer systems, networks, or digital devices by exploiting vulnerabilities or using malicious software. Common techniques include malware deployment, phishing to steal credentials, ransomware to encrypt data for extortion, and denial-of-service attacks that disrupt availability. These actions aim to gain unauthorized access, manipulate data, or cause operational disruption.
For security professionals, cyberattacks represent critical risks requiring proactive defense measures such as patching known vulnerabilities, monitoring network traffic for anomalies, and enforcing strong authentication. Understanding attacker methods helps prioritize defenses on exposed systems and sensitive data. Effective detection and containment depend on timely threat intelligence and coordinated response to limit damage and restore normal operations.
Threat actors created and abused OAuth apps to access Microsoft's corporate email environment and remain there for weeks.
It's unclear if the attacks — which hit oil and gas, postal service, transport safety, and railway organizations in the nation — were related.
Breach filings show Reddit post led to the discovery rather than any sophisticated cyber defenses Biotech and DNA-collection biz 23andMe, the one that blamed its own customers for the October mega-breach, just admitted it failed to detect any malicious activity for the entire five months attackers were breaking into user accounts.…
Also: Ivanti Exploitation Continues; Apple Fixes First Zero-Day of 2024This week, U.S. short seller lender EquiLend Holdings was hacked, the Ivanti exploitation continued, Apple addressed the first zero-day of 2024, Ukraine said hackers had hit a Russian research center, Kasseika ransomware evolved, North Korean hackers were active, and Trello experienced a data leak.
U.S.-Led Sanctions Do Little to Curtail North Korea's Development of AISouth Korea's intelligence agency has reported that North Korean hackers are using generative AI to conduct cyberattacks and search for hacking targets. Experts believe North Korea's AI capabilities are robust enough for more precise attacks on South Korea.
Tight-Lipped Agency's Next Move in Wake of $7.5M Scam Could Be TellingRumors are swirling about how the Department of Health and Human Services lost about $7.5 million in grant payments through a series of cyberattacks last year, including speculation over whether the incidents involved sophisticated AI-augmented spear-phishing or more commonplace fraud schemes.
1 million members still searching for answers as IT issues floor primary digital services The UK's Caravan and Motorhome Club (CAMC) is battling a suspected cyberattack with members reporting widespread IT outages for the past five days.…
New York-based global financial technology firm EquiLend says its operations have been disrupted after some systems were taken offline in a Monday cyberattack. [...]
Aleksandr Ermakov, alongside other members of the REvil ransomware gang, are responsible for one of the biggest cyberattacks in Australia's history.
The traffic distribution system supports tens of thousands of malicious domains and cyberattack campaigns that reach far and wide globally.
Experts Warn Tech Giant Faces Potential for Future Cyberattacks After Email HackingSecurity experts told ISMG they were concerned Microsoft could suffer future cyberattacks and threats to its customers after a Russian state hacking group managed to evade detection for several weeks while targeting accounts associated with the company’s top executives.
Thousands of vulnerable servers may be open to cyberattacks exploiting the max-severity CVE-2023-46604 bug.
Money Meant for Poor Communities Stolen as Authorities Issued Phishing Scam AlertsHackers have reportedly stolen about $7.5 million from a Department of Health and Human Services grant payment system in a series of cyberattacks last year. The news comes in the midst of HHS and other authorities warnings about rising threats involving social engineering and payment scams.
Russian state-sponsored threat actor Nobelium used a basic password-spray attack to breach Microsoft corporate email accounts, including for execs.
French Police Office for Cybercrime Has a Staff of 180A dedicated cybercrime unit under the French National Police is set to scale up operations ahead of the upcoming Olympics as authorities warn that cyberattacks are among the greatest threats to the event. Authorities on Friday unveiled the unit's new headquarters in Parisian suburb Nanterre.
Mortgage lender loanDepot says that approximately 16.6 million people had their personal information stolen in a ransomware attack disclosed earlier this month. [...]