SEARCH
Archive
Microsoft Azure Serial Console Abused in UNC3944 Attacks
An UNC3944 attack highlights how threat actors can abuse legitimate cloud resources for various purposes after compromising the Azure administrator's account.
Microsoft Fixes Windows Bug, Secure Boot Bypass Under Active Attack
Microsoft has patched two flaws (CVE-2023-29336 and CVE-2023-24932) that have been actively exploited.
PaperCut Flaws Exploited to Deploy Clop, LockBit Ransomware
Microsoft has attributed exploitation attempts of CVE-2023-27350 and CVE-2023-27351 to a Clop ransomware affiliate.
Microsoft Patches Windows CLFS Zero Day
Microsoft has patched a zero day in the Windows common log file system driver that has been actively exploited.
Microsoft and Partners Move to Disrupt Use of Cracked Cobalt Strike Copies
Microsoft, Fortra, and the Health-ISAC have obtained a court order to disrupt the use of cracked copies of Cobalt Strike, which are often used in ransomware intrusions.