PlugX plugged in to Xchange Servers
A Chinese cyberespionage group known for targeting leveraged flaws in the Microsoft Exchange Server that came to light earlier deploying a previously undocumented variant of a remote access trojan (RAT)…
Defender ATP Now Defends Removable Storage and Printers
Due to the ongoing pandemic, adhoc work culture has been widely followed. Use of devices such as unmanaged printers and removable devices prone to extend the attack surface To mitigate…
LemonDuck 🐤 targets Windows & Linux
The crypto mining malware that was noticeably noticed a few years ago is on the rise again, focusing on older vulnerabilities that may not have been noticeably investigated by the…
Posted inActive Directory cybersecurity Microsoft
PettiPotam Temporary Fix !
Microsoft has released mitigations for the new PetitPotam NTLM relay attack that allows taking over a domain controller or other Windows servers. The new attack uses the Microsoft Encrypting File…
PettiPotam Attack
Researches has discovered a vulnerability in the Windows operating system that allows an attacker to force remote Windows machines to authenticate and share their password hashes with him. The attack…
Windows 11 fake installers
Malware is masquerading as Microsoft's next-gen operating system to infect unsuspecting users' systems. The malware contained in a file called "86307_windows 11 build 21996.1 x64 + activator.exe" increased its file…
Posted incloudsecurity
Microsoft Another Acquisition !
Microsoft is buying CloudKnox Security to help build out its cloud security and Zero Trust strategy for an undisclosed amount. Officials said they will provide more information on what they'll…
Windows 10 Vulnerability could give Admin Privilege
A new vulnerability has been discovered in Windows 10 that allows anyone to get administrator privileges. The vulnerability is owed to an issue with file access permissions for some files…