Exchange Antiphising Feature
Recently Google implemented new security features to Gmail to address phishing threats, and now Microsoft is following suit with a planned update to Exchange. Via Microsoft's 365 Roadmap, the company…
Microsoft Warns on BEC
Microsoft is warning of a large-scale BEC campaign that targeted more than 120 organizations with gift card scam. The attackers targeted organizations in multiple industries, including the consumer goods, process…
Posted incybersecurity Endpoint Security Microsoft
Patch Tuesday April 2021
Microsoft's April 2021 Patch Tuesday, comes five zero-day vulnerabilities and more Critical Microsoft Exchange vulnerabilities. Microsoft has fixed 108 vulnerabilities, with 19 classified as Critical and 89 as Important. Excluding…
CyberBattleSIM
CyberBattleSim allows for the training of automated agents, and provides a Python-based OpenAI Gym interface for that. In the simulated environments, defenders can leverage reinforcement learning algorithms and set up…
PSExec Privilege Escalation
PsExec is a Sysinternals utility designed to allow administrators to perform various activities on remote computers, such as launching executables and displaying the output on the local computer or creating…
Posted inMITRE
Purple Knight AD Assessment Tool
Microsoft Active Directory (AD) is used by 90 percent of enterprises as the primary source of trust for identity and access, but it’s also exploited in many cyberattacks. Since AD…
Patch Tuesday 03’2021.
Microsoft’s March Patch Tuesday security updates address 89 vulnerabilities in its products, including Microsoft Windows components, Azure and Azure DevOps, Azure Sphere, Internet Explorer and Edge, Exchange Server, Office and…
Posted incybersecurity Endpoint Security Security
Three more Malware strains in to SolarWinds
Microsoft has started tracking the threat actor behind the SolarWinds attack as NOBELIUM. The company has identified three new pieces of malware that it believes are used by the group…