Microsoft is sounding the alarm on a group it calls Volt Typhoon, another state-sponsored hacking group based in China that is targeting critical infrastructure organizations and leveraging living-off-the-land techniques and proxying its network traffic through compromised network edge devices and routers to evade detection. Microsoft says Volt Typhoon is pursing development of capabilities that could […]
Microsoft is hoping to address the security issue of emails sent to Exchange online from unsupported and unpatched Exchange Servers by enabling a transport-based enforcement system in Exchange Online that will throttle and then block emails from an unsupported server. The end goal is to encourage Microsoft customers to stop using persistently vulnerable versions of […]
Microsoft acknowledges Lapsus$ accessed source code, downplays risk to customers and risk of elevation Lapsus$ uses extensive social engineering, including paying victims’ employees for initial access and convincing help desks to reset credentials Group uses VPNs, RDP, VDI and identity providers such as Azure AD, Okta in attacks Okta says 2.5% of customers potentially impacted […]
As the world grapples with a pandemic, politics, social justice issues and other global crises, cybercriminals are taking advantage of those distractions and are launching attacks at a rapid pace. Cybersecurity and antivirus company Bitdefender found that pandemic-related attacks increased five-fold in the first two weeks of March. In May and June, an average of 60% […]
A hacking group backed by a foreign government is conducting a global attack through the software supply chain and widely-used IT infrastructure management software from SolarWinds, according to cybersecurity company FireEye. The attack method appears to be linked to a compromise of FireEye’s own systems in a breach reported last week in which attackers stole […]
Some of the best ways to avoid data breaches and cybersecurity compromise is to practice good password security and use other tools like two-factor authentication. That means using unique passwords that aren’t easy to guess and enabling multi-factor authentication on all of your accounts – including social media. U.S. President Donald Trump apparently didn’t get […]
Instacart — the grocery delivery-on-demand app — could have suffered a data breach which affected hundreds of thousands of customers. According to a recent BuzzFeed report, the names, last four digits of credit card numbers, and order histories are popping up on dark web markets as a result of the supposed Instacart hack. The report […]
A group of hackers affiliated with the Russian government has exploited flaws in an email software, according to the National Security Agency. Their recent advisory said the group, called “Sandworm team,” is a part of Russia’s military intelligence agency that exploited a vulnerability in Exim Mail Transfer Agent since last August. More from a recent […]
FREE Downloadable resources from TechDecisions provide timely insight into the issues that IT, A/V, and Security end-users, managers, and decision makers are facing in commercial, corporate, education, institutional, and other vertical markets
View all Guides
Get your latest project featured on TechDecisions Project of the Week. Submit your work once and it will be eligible for all upcoming weeks.
Enter Today!