Fancy Bear Exploits Microsoft Office Flaw in Ukraine, EU Cyber-Attacks
Russia-linked hacking group Fancy Bear is exploiting a brand-new vulnerability in Microsoft Office, CERT-UA says
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
Russia-linked hacking group Fancy Bear is exploiting a brand-new vulnerability in Microsoft Office, CERT-UA says
The backdoor is a sophisticated VBA-based malware targeting Microsoft Outlook
The campaign shows APT29’s intentions to “cast a wider net in their intelligence collection efforts,” said Amazon
Microsoft has observed Russian state actor Secret Blizzard using an AiTM position to gain initial access, assisted by official domestic intercept systems
A new wave of phishing attacks exploiting Microsoft 365 OAuth tools has been observed impersonating diplomats to steal access codes
Russian military intelligence-linked hackers are using a new malware called “Authentic Antics” to secretly access Microsoft cloud email accounts, the UK's NCSC reports
A newly-discovered Russian group, Void Blizzard, has successfully compromised organizations in critical industries, Microsoft warned
Volexity highlighted how Russian nation-state actors are stealing Microsoft device authentication codes to compromise accounts
Microsoft found that Russian state actor Seashell Blizzard has deployed an initial access subgroup to gain persistent access in a range of high-value global targets
Microsoft detailed how Russian espionage group Secret Blizzard is leveraging infrastructure of other threat actors to target the Ukrainian military with custom malware
Microsoft has found that Russian APT Secret Blizzard piggybacks on other cybercriminals' infr4asytructure to conduct cyber espionage
Russia-backed hackers, known as RomCom, have exploited critical zero-day vulnerabilities in Mozilla Firefox and Windows to launch targeted attacks
Microsoft has spotted a major spearphishing campaign from the Russian APT29 group using RDP for compromise
Microsoft and the US government have collectively seized over 100 websites used by Russian nation-state actor Star Blizzard
The malware issues commands via a hardcoded charcode table and Microsoft COM object interfaces
Microsoft has warned of a long-running credential stealing campaign from Russia’s APT28
Threat group APT29 is using secrets stolen in an earlier attack to compromise Microsoft’s internal systems
Microsoft said the Russian nation-state group Midnight Blizzard obfuscated its attack through the use of an OAuth application
Russian intelligence hackers compromise emails of senior Microsoft leadership with simple password spray attacks
The Russia-based actor exploited compromised Microsoft 365 tenants owned by small businesses