Microsoft – Page 3 – OWASP Jakarta

Microsoft Detects Growing Use of File Hosting Services in Business Email Compromise Attacks

Microsoft Detects Growing Use of File Hosting Services in Business Email Compromise Attacks Oct 09, 2024Ravie LakshmananEnterprise Security / Identity Theft Microsoft is warning of cyber attack campaigns that abuse legitimate file hosting services such as SharePoint, OneDrive, and Dropbox that are widely used in enterprise environments as a defense Read more…

By adminowasp, 9 months ago

Russian hack attack concept, on the computer keyboard. 3D rendering

News

DOJ, Microsoft take down 107 Russian-backed Star Blizzard domains

DOJ, Microsoft take down 107 Russian-backed Star Blizzard domains The U.S. Department of Justice, in collaboration with Microsoft, took down 107 unique domains run by the Russian-backed Star Blizzard threat group, which used the websites to launch spear-phishing attacks on Microsoft customers, multiple federal agencies, and defense contractors. Microsoft filed Read more…

By adminowasp, 9 monthsOctober 5, 2024 ago

News

U.S. and Microsoft Seize 107 Russian Domains in Major Cyber Fraud Crackdown

U.S. and Microsoft Seize 107 Russian Domains in Major Cyber Fraud Crackdown Oct 04, 2024Ravie LakshmananPhishing Attack / Cybercrime Microsoft and the U.S. Department of Justice (DoJ) on Thursday announced the seizure of 107 internet domains used by state-sponsored threat actors with ties to Russia to facilitate computer fraud and Read more…

By adminowasp, 9 months ago

News

Why Microsoft 365 Protection Reigns Supreme

Why Microsoft 365 Protection Reigns Supreme Imagine a sophisticated cyberattack cripples your organization’s most critical productivity and collaboration tool — the platform you rely on for daily operations. In the blink of an eye, hackers encrypt your emails, files, and crucial business data stored in Microsoft 365, holding it hostage Read more…

By adminowasp, 9 months ago

News

Microsoft Identifies Storm-0501 as Major Threat in Hybrid Cloud Ransomware Attacks

Microsoft Identifies Storm-0501 as Major Threat in Hybrid Cloud Ransomware Attacks The threat actor known as Storm-0501 has targeted government, manufacturing, transportation, and law enforcement sectors in the U.S. to stage ransomware attacks. The multi-stage attack campaign is designed to compromise hybrid cloud environments and perform lateral movement from on-premises Read more…

By adminowasp, 9 months ago

News

New Flaws in Microsoft macOS Apps Could Allow Hackers to Gain Unrestricted Access

New Flaws in Microsoft macOS Apps Could Allow Hackers to Gain Unrestricted Access Eight vulnerabilities have been uncovered in Microsoft applications for macOS that an adversary could exploit to gain elevated privileges or access sensitive data by circumventing the operating system’s permissions-based model, which revolves around the Transparency, Consent, and Read more…

By adminowasp, 10 months ago

News

Microsoft Issues Patches for 90 Flaws, Including 10 Critical Zero-Day Exploits

Microsoft Issues Patches for 90 Flaws, Including 10 Critical Zero-Day Exploits Aug 14, 2024Ravie LakshmananWindows Security / Vulnerability Microsoft on Tuesday shipped fixes to address a total of 90 security flaws, including 10 zero-days, of which six have come under active exploitation in the wild. Of the 90 bugs, seven Read more…

By adminowasp, 11 months ago

News

Microsoft Warns of Unpatched Office Vulnerability Leading to Data Exposure

Microsoft Warns of Unpatched Office Vulnerability Leading to Data Exposure Aug 10, 2024Ravie LakshmananVulnerability / Enterprise Security Microsoft has disclosed an unpatched zero-day in Office that, if successfully exploited, could result in unauthorized disclosure of sensitive information to malicious actors. The vulnerability, tracked as CVE-2024-38200 (CVSS score: 7.5), has been Read more…

By adminowasp, 11 months ago

Microsoft Bounty Pograms with stats on bounty rewards from 2023 to 2024

News

Microsoft Bounty Program Year in Review: $16.6M in Rewards | MSRC Blog

Microsoft Bounty Program Year in Review: $16.6M in Rewards | MSRC Blog We are excited to announce that this year the Microsoft Bounty Program has awarded $16.6M in bounty awards to 343 security researchers from 55 countries, securing Microsoft customers in partnership with the Microsoft Security Response Center (MSRC). Each Read more…

By adminowasp, 11 monthsAugust 6, 2024 ago

News

New Attack Technique Exploits Microsoft Management Console Files

New Attack Technique Exploits Microsoft Management Console Files Jun 25, 2024NewsroomVulnerability / Threat Detection Threat actors are exploiting a novel attack technique in the wild that leverages specially crafted management saved console (MSC) files to gain full code execution using Microsoft Management Console (MMC) and evade security defenses. Elastic Security Read more…

By adminowasp, 1 year ago